EUVD-2008-6506

Malware in sbrugna...

EUVD-2008-6505

Malware in sbrugna...

Design/Logic Flaw

DeStar 0.2.2-5 allows remote attackers to add arbitrary users via a direct request to config/add/CfgOptUser...

CVE-2008-6538

DeStar 0.2.2-5 allows remote attackers to add arbitrary users via a direct request to config/add/CfgOptUser...

CVE-2008-6539

Static code injection vulnerability in user/settings/ in DeStar 0.2.2-5 allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destarcfg.py via a crafted pin parameter...

Code injection

Static code injection vulnerability in user/settings/ in DeStar 0.2.2-5 allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destarcfg.py via a crafted pin parameter...

CVE-2008-6538

DeStar 0.2.2-5 allows remote attackers to add arbitrary users via a direct request to config/add/CfgOptUser...

CVE-2008-6539

Static code injection vulnerability in user/settings/ in DeStar 0.2.2-5 allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destarcfg.py via a crafted pin parameter...

CVE-2008-6539

Static code injection vulnerability in user/settings/ in DeStar 0.2.2-5 allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destarcfg.py via a crafted pin parameter...

CVE-2008-6538

DeStar 0.2.2-5 allows remote attackers to add arbitrary users via a direct request to config/add/CfgOptUser...

CVE-2008-6538

Vulnerability overview (CVE-2008-6538): DeStar 0.2.2-5 is affected. The issue allows remote attackers to add arbitrary users through a direct request to config/add/CfgOptUser, indicating a flaw in access control/validation. The CVSS data from NVD indicates a medium severity (base score 5.0) with ...

CVE-2008-6539

The CVE-2008-6539 entry is concrete: DeStar 0.2.2-5 contains a static code injection in the user/settings/ path that allows remote authenticated users to add arbitrary administrators and inject arbitrary Python code into destar_cfg.py via a crafted pin parameter. The underlying issue is a code-in...

destar 0.2.2-5 Arbitrary Add Admin User Exploit

No description provided by source. !/usr/bin/python Exploit for destar 0.2.2-5, tested on Linux Debian Bug found and exploit coded by a non root user http://nonroot.blogspot.com/ Enero 2008 This is a PoC, please use it just for learning how to exploit something use: $python ./exploitcode.py...

destar 0.2.2-5 Arbitrary Add New User Exploit

No description provided by source. !/usr/bin/python Exploit for destar 0.2.2-5, tested on Linux Debian Bug found and exploit coded by a non root user http://nonroot.blogspot.com Enero 2008 This is a PoC, please use it just for learning how to exploit something use: $python ./exploitcode.py...

exploit_code.py.txt

!/usr/bin/python Exploit for destar 0.2.2-5, tested on Linux Debian Bug found and exploit coded by a non root user http://nonroot.blogspot.com Enero 2008 This is a PoC, please use it just for learning how to exploit something use: $python ./exploitcode.py required: urllib,urllib2 sys and re impor...

destar 0.2.2-5 Arbitrary Add Admin User Exploit

Exploit for unknown platform in category web applications =============================================== destar 0.2.2-5 Arbitrary Add Admin User Exploit =============================================== !/usr/bin/python Exploit for destar 0.2.2-5, tested on Linux Debian Bug found and exploit coded...

Destar 0.2.2-5 - Arbitrary Add Admin

Destar 0.2.2-5 - Arbitrary Add Admin !/usr/bin/python Exploit for destar 0.2.2-5, tested on Linux Debian Bug found and exploit coded by a non root user http://nonroot.blogspot.com/ Enero 2008 This is a PoC, please use it just for learning how to exploit something use: $python ./exploitcode.py...

Destar 0.2.2-5 - Arbitrary Add Admin

!/usr/bin/python Exploit for destar 0.2.2-5, tested on Linux Debian Bug found and exploit coded by a non root user http://nonroot.blogspot.com/ Enero 2008 This is a PoC, please use it just for learning how to exploit something use: $python ./exploitcode.py required: urllib, sys and re import urll...

Destar 0.2.2-5 - Arbitrary Add New User

!/usr/bin/python Exploit for destar 0.2.2-5, tested on Linux Debian Bug found and exploit coded by a non root user http://nonroot.blogspot.com Enero 2008 This is a PoC, please use it just for learning how to exploit something use: $python ./exploitcode.py required: urllib,urllib2 sys and re impor...

destar 0.2.2-5 Arbitrary Add New User Exploit

Exploit for unknown platform in category web applications ============================================= destar 0.2.2-5 Arbitrary Add New User Exploit ============================================= !/usr/bin/python Exploit for destar 0.2.2-5, tested on Linux Debian Bug found and exploit coded by a...