10 matches found
homelab-security
Cybersecurity Home Lab A personal home lab built for hands-on...
Exploit for OS Command Injection in Vsftpd_Project Vsftpd
CVE-2011-2523-poc This is a python3 script to exploit the CVE...
vsftpd 2.3.4 - Backdoor Command Execution Exploit
Exploit Title: vsftpd 2.3.4 - Backdoor Command Execution Exploit Author: HerculesRD Software Link: http://www.linuxfromscratch.org/thomasp/blfs-book-xsl/server/vsftpd.html Version: vsftpd 2.3.4 Tested on: debian CVE : CVE-2011-2523 !/usr/bin/python3 from telnetlib import Telnet import argparse fr...
vsftpd 2.3.4 - Backdoor Command Execution
Exploit Title: vsftpd 2.3.4 - Backdoor Command Execution Date: 9-04-2021 Exploit Author: HerculesRD Software Link: http://www.linuxfromscratch.org/thomasp/blfs-book-xsl/server/vsftpd.html Version: vsftpd 2.3.4 Tested on: debian CVE : CVE-2011-2523 !/usr/bin/python3 from telnetlib import Telnet...
Arbitrary Code Execution Over HTTP Traffic (CVE-2011-2523; CVE-2019-18345; CVE-2019-19143; CVE-2020-15492; CVE-2020-16210; CVE-2020-21526; CVE-2020-24379; CVE-2020-6142; CVE-2020-8010; CVE-2020-9380)
Arbitrary Code Execution Over HTTP Traffic...
CVE-2011-2523
vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp...
CVE-2011-2523
vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp...
CVE-2011-2523
CVE-2011-2523 affects vsftpd 2.3.4, where a compromised distribution contained a backdoor that, when a login uses a username including :), opens a root shell on TCP port 6200. Public PoCs and exploits (e.g., OS command injection/backdoor modules) demonstrate remote command execution via the backd...
ftp-vsftpd-backdoor NSE Script
Tests for the presence of the vsFTPd 2.3.4 backdoor reported on 2011-07-04 CVE-2011-2523. This script attempts to exploit the backdoor using the innocuous id command by default, but that can be changed with the exploit.cmd or ftp-vsftpd-backdoor.cmd script arguments. References: Script Arguments...
CVE-2011-2523
creationtimestamp| type| source ---|---|--- 2011-07-05 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/17491 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/ftp/vsftpd234backdoor.rb 2019-11-28 00:31:21+00:00| seen|...