Solaris 8.0 LPD - Command Execution (Metasploit)

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Solaris LPD...

CVE-2001-0436

The vulnerability CVE-2001-0436 affects DCForum 2000, specifically the dcboard.cgi CGI: remote attackers can execute arbitrary commands by uploading a Perl program to the server and referencing it via a .. in the AZ parameter. This is documented in the NVD entry for DCForum 2000 1.0 with a base s...

CVE-2001-0025

ad.cgi CGI program by Leif Wright allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter...

CVE-2001-0098

Buffer overflow in Bea WebLogic Server before 5.1.0 allows remote attackers to execute arbitrary commands via a long URL that begins with a ".." string...

CVE-2000-1077

Buffer overflow in the SHTML logging functionality of iPlanet Web Server 4.x allows remote attackers to execute arbitrary commands via a long filename with a .shtml extension...

CVE-2000-0973

CVE-2000-0973 affects curl before 6.0-1.1 and curl-ssl before 6.0-1.2. A buffer overflow occurs when generating a long error message, allowing remote attackers to execute arbitrary commands. Root cause: unchecked length in error handling. Connected sources (OSV, CVE records) confirm the overflow ...

CVE-2000-0586

Buffer overflow in Dalnet IRC server 4.6.5 allows remote attackers to cause a denial of service or execute arbitrary commands via the SUMMON command...

CVE-2000-0398

The CVE-2000-0398 issue affects Rockliffe MailSite Management Agent, due to a buffer overflow in wconsole.dll that can be triggered by a long query_string parameter in an HTTP GET request. This allows remote attackers to potentially execute arbitrary commands. Public documents identify the vulner...

winmail305.txt

I found some vulnerabilities if windmail run as a CGI application.tested On WindowsNT 4.0, Windmail 3.05 successfully. WindMail is a 32-bit Windows console program by geocel that gives you command-line e-mail messaging capability. You can download an evaluation copy of WindMail 3.0 at:...

Adobe Acrobat ActiveX Control 1.3.188 - ActiveX Buffer Overflow

Adobe Acrobat ActiveX Control 1.3.188 - ActiveX Buffer Overflow source: https://www.securityfocus.com/bid/666/info There is a buffer overflow in the 1.3.188 version of the Adobe Acrobat ActiveX control pdf.ocx that ships with Acrobat Viewer 4.0. This ActiveX control is marked 'Safe for Scripting'...

abuseconsole.sh

There is a security hole in RedHat 2.1, which installs the game abuse, /usr/lib/games/abuse/abuse.console suid root. The abuse.console program loads its files without absolute pathnames, assuming the user is running abuse from the /usr/lib/games/abuse directory. One of these files in the undrv...

AZL-6421 CVE-1999-0150 affecting package finger for versions less than 0.17-4

The Perl fingerd program allows arbitrary command execution from remote users...