3 matches found
CVE-2015-5082
Endian Firewall OS Command Injection vulnerability (CVE-2015-5082) affects Endian Firewall where the CGI script cgi-bin/chpasswd.cgi fails to properly sanitize NEW_PASSWORD_1/NEW_PASSWORD_2, enabling remote command execution via shell metacharacters. Public references document related exploits an...
CVE-2015-5082
creationtimestamp| type| source ---|---|--- 2015-09-07 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38096 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/efwchpasswdexec.rb 2025-02-06 03:13:42+00:00| seen|...
Endian Firewall - Password Change Command Injection (Metasploit)
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Endian Firewall Proxy Password Change Command Injection', 'Description' = %q This module exploits an OS command injection...