Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:14 a.m.5 views

CVE-2013-4984

The closeconnections function in /opt/cma/bin/clearkeys.pl in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows local users to gain privileges via shell metacharacters in the second argument...

7.2CVSS6.8AI score0.08128EPSS
Exploits11References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Sophos Web Protection Appliance clear_keys.pl Local Privilege Escalation

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.59 views

Sophos Web Protection Appliance - Multiple Vulnerabilities

No description provided by source. Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS6.5AI score0.90133EPSS
Exploits17
Packet Storm
Packet Storm
added 2013/09/17 12:0 a.m.39 views

Sophos Web Protection Appliance clear_keys.pl Local Privilege Escalation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

7.2CVSS0.9AI score0.08128EPSS
Exploits11
0day.today
0day.today
added 2013/09/17 12:0 a.m.64 views

Sophos Web Protection Appliance clear_keys.pl Local Privilege Escalation

This Metasploit module abuses a command injection on the clearkeys.pl perl script, installed with the Sophos Web Protection Appliance, to escalate privileges from the "spiderman" user to "root". This Metasploit module is useful for post exploitation of vulnerabilities on the Sophos Web Protection...

7.2CVSS7.1AI score0.08128EPSS
Exploits11
Exploit DB
Exploit DB
added 2013/09/17 12:0 a.m.38 views

Sophos Web Protection Appliance - clear_keys.pl Privilege Escalation (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

7.2CVSS6.6AI score0.08128EPSS
Exploits11
securityvulns
securityvulns
added 2013/09/11 12:0 a.m.119 views

[CORE-2013-0809] Sophos Web Protection Appliance Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS0.8AI score0.90133EPSS
Exploits17
CVE
CVE
added 2013/09/10 10:0 a.m.68 views

CVE-2013-4984

The CVE-2013-4984 issue affects Sophos Web Protection Appliance: the close_connections() function in /opt/cma/bin/clear_keys.pl allows local privilege escalation via shell metacharacters in the second argument, on affected builds before 3.7.9.1 and 3.8 before 3.8.1.1. Root cause is improper escap...

7.2CVSS6.4AI score0.08128EPSS
Exploits11References2Affected Software1
exploitpack
exploitpack
added 2013/09/09 12:0 a.m.86 views

Sophos Web Protection Appliance - Multiple Vulnerabilities

Sophos Web Protection Appliance - Multiple Vulnerabilities Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-08...

10CVSS1AI score0.90133EPSS
Exploits17
OpenVAS
OpenVAS
added 2013/09/09 12:0 a.m.36 views

Sophos Web Protection Appliance Multiple Vulnerabilities (Jul 2013) - Active Check

Sophos Web Protection Appliance is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS6.3AI score0.90133EPSS
Exploits17References1
Exploit DB
Exploit DB
added 2013/09/09 12:0 a.m.68 views

Sophos Web Protection Appliance - Multiple Vulnerabilities

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS7AI score0.90133EPSS
Exploits17
Packet Storm
Packet Storm
added 2013/09/07 12:0 a.m.65 views

Sophos Web Protection Appliance Command Injection

Core Security - Corelabs Advisory http://corelabs.coresecurity.com/ Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:...

10CVSS0.7AI score0.90133EPSS
Exploits17
0day.today
0day.today
added 2013/09/07 12:0 a.m.84 views

Sophos Web Protection Appliance Command Injection Vulnerability

Core Security Technologies Advisory - Sophos Web Protection Appliance versions 3.7.9 and earlier, 3.8.1, and 3.8.0 suffer from multiple OS command injection vulnerabilities. Sophos Web Protection Appliance Multiple Vulnerabilities 1. Advisory Information Title: Sophos Web Protection Appliance...

10CVSS7.1AI score0.90133EPSS
Exploits17
Core Security
Core Security
added 2013/09/06 12:0 a.m.52 views

Sophos Web Protection Appliance Multiple Vulnerabilities

Advisory ID Internal CORE-2013-0809 1. Advisory Information Title: Sophos Web Protection Appliance Multiple Vulnerabilities Advisory ID: CORE-2013-0809 Advisory URL:https://www.coresecurity.com/core-labs/advisories/sophos-web-protection-appliance-multiple-vulnerabilities Date published: 2013-09-0...

10CVSS8.3AI score0.90133EPSS
Exploits17
Rows per page
Query Builder