Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 2:44 a.m.8 views

CVE-2013-4983

The getreferers function in /opt/ws/bin/sblistpack in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the domain parameter to end-user/index.php...

10CVSS7.9AI score0.90133EPSS
Exploits12References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Sophos Web Protection Appliance sblistpack Arbitrary Command Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.58 views

Sophos Web Protection Appliance - Multiple Vulnerabilities

No description provided by source. Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS6.5AI score0.90133EPSS
Exploits17
Check Point Advisories
Check Point Advisories
added 2013/10/15 12:0 a.m.16 views

Sophos Web Protection Appliance sblistpack Arbitrary Command Execution (CVE-2013-4983)

A command injection vulnerability has been reported in Sophos Web Protection Appliance. The vulnerability is due to sblistpack component, reachable from the web interface without authentication. An unauthenticated remote attacker could execute arbitrary OS commands on the Sophos appliance...

10CVSS7.8AI score0.90133EPSS
Exploits12
0day.today
0day.today
added 2013/09/17 12:0 a.m.58 views

Sophos Web Protection Appliance sblistpack Arbitrary Command Execution

This Metasploit module exploits a command injection vulnerability on Sophos Web Protection Appliance 3.7.9, 3.8.0 and 3.8.1. The vulnerability exists on the sblistpack component, reachable from the web interface without authentication. This Metasploit module has been tested successfully on Sophos...

10CVSS7AI score0.90133EPSS
Exploits12
Exploit DB
Exploit DB
added 2013/09/17 12:0 a.m.35 views

Sophos Web Protection Appliance - 'sblistpack' Arbitrary Command Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Sophos Web Protection Appliance...

10CVSS6.6AI score0.90133EPSS
Exploits12
securityvulns
securityvulns
added 2013/09/11 12:0 a.m.118 views

[CORE-2013-0809] Sophos Web Protection Appliance Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS0.8AI score0.90133EPSS
Exploits17
d2
d2
added 2013/09/10 11:28 a.m.549 views

DSquare Exploit Pack: D2SEC_SWA

Name| d2secswa ---|--- CVE| CVE-2013-4983 Exploit Pack| D2ExploitPack Description| Sophos Web Protection Appliance 3.8.1 Remote Code Execution Vulnerability Notes|...

10CVSS3.9AI score0.90133EPSS
Exploits12
CVE
CVE
added 2013/09/10 10:0 a.m.71 views

CVE-2013-4983

CVE-2013-4983 affects Sophos Web Protection Appliance via the sblistpack component (get_referers) in /opt/ws/bin/sblistpack. Versions affected: pre-3.7.9.1 and pre-3.8.1.1 (i.e., 3.7.9.1 and 3.8.1.1 patched). The vulnerability allows remote command execution by injecting shell metacharacters into...

10CVSS7.5AI score0.90133EPSS
Exploits12References2Affected Software1
OpenVAS
OpenVAS
added 2013/09/09 12:0 a.m.34 views

Sophos Web Protection Appliance Multiple Vulnerabilities (Jul 2013) - Active Check

Sophos Web Protection Appliance is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS6.3AI score0.90133EPSS
Exploits17References1
Circl
Circl
added 2013/09/09 12:0 a.m.14 views

CVE-2013-4983

creationtimestamp| type| source ---|---|--- 2013-09-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/28175 2013-09-17 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/28334 2018-05-29 15:50:33+00:00| seen|...

10CVSS5.7AI score0.90133EPSS
Exploits12References3
Exploit DB
Exploit DB
added 2013/09/09 12:0 a.m.67 views

Sophos Web Protection Appliance - Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS7AI score0.90133EPSS
Exploits17
exploitpack
exploitpack
added 2013/09/09 12:0 a.m.77 views

Sophos Web Protection Appliance - Multiple Vulnerabilities

Sophos Web Protection Appliance - Multiple Vulnerabilities Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-08...

10CVSS1AI score0.90133EPSS
Exploits17
Packet Storm
Packet Storm
added 2013/09/07 12:0 a.m.64 views

Sophos Web Protection Appliance Command Injection

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS0.7AI score0.90133EPSS
Exploits17
0day.today
0day.today
added 2013/09/07 12:0 a.m.81 views

Sophos Web Protection Appliance Command Injection Vulnerability

Core Security Technologies Advisory - Sophos Web Protection Appliance versions 3.7.9 and earlier, 3.8.1, and 3.8.0 suffer from multiple OS command injection vulnerabilities. Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance...

10CVSS7.1AI score0.90133EPSS
Exploits17
Core Security
Core Security
added 2013/09/06 12:0 a.m.51 views

Sophos Web Protection Appliance Multiple Vulnerabilities

Advisory ID Internal CORE-2013-0809 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:https://www.coresecurity.com/core-labs/advisories/sophos-web-protection-appliance-multiple-vulnerabilities Date published: 2013-09-0...

10CVSS8.3AI score0.90133EPSS
Exploits17
Rows per page
Query Builder