3 matches found
httpdx - 'tolog()' Format String (Metasploit) (2)
$Id: httpdxtologformat.rb 10150 2010-08-25 20:55:37Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
CVE-2009-4769
CVE-2009-4769 has concrete details across multiple sources: it affects httpdx (HTTP server component) and ftp server functionality, specifically the tolog() format string vulnerability in httpdx versions 1.4 to 1.5 (including 1.4.5, 1.4.6, 1.4.6b, 1.5). The root cause is improper handling of form...
HTTPDX tolog() Function Format String Vulnerability
This module exploits a format string vulnerability in HTTPDX HTTP server. By sending a specially crafted HTTP request containing format specifiers, an attacker can corrupt memory and execute arbitrary code. By default logging is off for HTTP, but enabled for the 'moderator' user via FTP. This...