Lucene search
K

54 matches found

Exploit DB
Exploit DB
added 2013/03/25 12:0 a.m.30 views

Mutiny - Remote Command Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Mutiny Remote Command Execution',...

8.5CVSS6.8AI score0.2731EPSS
Exploits4
0day.today
0day.today
added 2013/03/23 12:0 a.m.40 views

Mutiny Remote Command Execution Vulnerability

This Metasploit module exploits an authenticated command injection vulnerability in the Mutiny appliance. Versions prior to 4.5-1.12 are vulnerable. In order to exploit the vulnerability the mutiny user must have access to the admin interface. The injected commands are executed with root...

8.5CVSS7.1AI score0.2731EPSS
Exploits4
Packet Storm
Packet Storm
added 2013/03/23 12:0 a.m.28 views

Mutiny Remote Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'Mutiny Remote Command Execution',...

8.5CVSS0.2731EPSS
Exploits4
Metasploit
Metasploit
added 2013/03/07 6:12 p.m.44 views

Mutiny Remote Command Execution

This module exploits an authenticated command injection vulnerability in the Mutiny appliance. Versions prior to 4.5-1.12 are vulnerable. In order to exploit the vulnerability the mutiny user must have access to the admin interface. The injected commands are executed with root privileges. This...

8.5CVSS7.1AI score0.2731EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2012/10/26 12:0 a.m.23 views

Mutiny Detection

The remote web server hosts Mutiny, a network monitoring application that uses SNMP to gather infrastructure information and process and display the results in a web-based interface. This information is used to assess the health of network devices. C Tenable Network Security, Inc...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/10/26 12:0 a.m.21 views

Mutiny < 4.5-1.12 Unspecified Network Interface Menu Remote Command Injection

The remote web server hosts a version of Mutiny earlier than 4.5-1.12. It is, therefore, reportedly affected by a command injection vulnerability that could allow an authenticated attacker to execute arbitrary commands via the network interface menu. Note that Nessus has not tested for this issue...

8.5CVSS5.8AI score0.2731EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2012/10/23 12:0 a.m.20 views

Mutiny Command Injection Vulnerability

Mutiny is prone to a command-injection vulnerability. Attackers can exploit this issue to execute arbitrary commands with root privileges. Mutiny versions prior to 4.5-1.12 are vulnerable. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced source...

8.5CVSS7.5AI score0.2731EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2012/10/23 12:0 a.m.7 views

Mutiny Detection

Detection of Mutiny. The script sends a connection request to the server and attempts to extract the version number from the reply. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

7AI score
Exploits0
NVD
NVD
added 2012/10/22 4:55 p.m.14 views

CVE-2012-3001

Mutiny Standard before 4.5-1.12 allows remote attackers to execute arbitrary commands via the network-interface menu, related to a "command injection vulnerability."...

8.5CVSS7.7AI score0.2731EPSS
Exploits4References5
Prion
Prion
added 2012/10/22 4:55 p.m.14 views

Command injection

Mutiny Standard before 4.5-1.12 allows remote attackers to execute arbitrary commands via the network-interface menu, related to a "command injection vulnerability."...

8.5CVSS8.3AI score0.2731EPSS
Exploits4References5Affected Software1
Cvelist
Cvelist
added 2012/10/22 4:0 p.m.19 views

CVE-2012-3001

Mutiny Standard before 4.5-1.12 allows remote attackers to execute arbitrary commands via the network-interface menu, related to a "command injection vulnerability."...

7.7AI score0.2731EPSS
Exploits4References5
CVE
CVE
added 2012/10/22 4:0 p.m.50 views

CVE-2012-3001

Mutiny Standard before 4.5-1.12 is vulnerable to a command-injection in the network-interface menu. An authenticated attacker can trigger arbitrary commands with root privileges via the admin interface; patches exist in 4.5-1.12 or newer. This is evidenced by multiple sources (NVD, CERT, OpenVAS,...

8.5CVSS7.9AI score0.2731EPSS
Exploits4References5Affected Software1
CERT
CERT
added 2012/10/22 12:0 a.m.29 views

Mutiny Technology virtual appliance command injection vulnerability

Overview The Mutiny Technology virtual appliance contains a command injection vulnerability which could allow an attacker to inject commands into the appliance. Description CWE-77: Improper Neutralization of Special Elements used in a Command 'Command Injection'The Mutiny Technology virtual...

8.5CVSS6.9AI score0.2731EPSS
Exploits4References2
xssed
xssed
added 2008/01/20 12:0 a.m.14 views

Unfixed XSS vulnerability at www.poker-edge.com

Security researcher Mutiny, has submitted on 20/01/2008 a cross-site-scripting XSS vulnerability affecting www.poker-edge.com, which at the time of submission ranked 88409 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/03/2008. It is...

0.1AI score
Exploits0References1
Rows per page
Query Builder