CVE-2000-0784

The CVE concerns the Rapidstream 2.1 Beta VPN appliance where the sshd daemon contains a hard-coded rsadmin account with a null password. This effectively allows remote attackers to authenticate without credentials and execute arbitrary commands via SSH, giving full compromise potential to the de...

formhandler.cgi.txt

From: Mnemonix Subject: FormHandler.cgi FormHandler.cgi available from http://www.cgi-perl.com/programs/FormHandler uses hard coded physical paths for templates etc so it's possible to get sensitive files like /etc/passwd by modifying a site's f orm and submitting it. Cheers, David Litchfield...