EUVD-2009-3996

Malware in sbrugna...

FreeBSD Ports: pear-Net_Ping

The remote host is missing an update to the system as announced in the referenced advisory. VID 56ba8728-f987-11de-b28d-00215c6a37bb OpenVAS Vulnerability Test $ Description: Auto generated from VID 56ba8728-f987-11de-b28d-00215c6a37bb Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

FreeBSD Ports: pear-Net_Ping

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2010 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Gentoo Security Advisory GLSA 200911-06 (PEAR-Net_Traceroute)

The remote host is missing updates announced in advisory GLSA 200911-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200911-06 (PEAR-Net_Traceroute)

The remote host is missing updates announced in advisory GLSA 200911-06. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

GLSA-200911-06 : PEAR Net_Traceroute: Command injection

The remote host is affected by the vulnerability described in GLSA-200911-06 PEAR NetTraceroute: Command injection Pasquale Imperato reported that the $host parameter to the traceroute function in Traceroute.php is not properly sanitized before being passed to exec. Impact : A remote attacker cou...

CVE-2009-4025

Argument injection vulnerability in the traceroute function in Traceroute.php in the NetTraceroute package before 0.21.2 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: some of these details are obtained from third party information...

CVE-2009-4025

Argument injection vulnerability in the traceroute function in Traceroute.php in the NetTraceroute package before 0.21.2 for PEAR allows remote attackers to execute arbitrary shell commands via the host parameter. NOTE: some of these details are obtained from third party information...

CVE-2009-4025

CVE-2009-4025 affects the PEAR package Net_Traceroute for PHP, specifically the Traceroute.php component, where the traceroute host input is passed to exec without proper sanitization. Vulnerable: Net_Traceroute before version 0.21.2. Attack impact: remote attackers could execute arbitrary shell ...

PEAR Net_Traceroute 'traceroute()'函数任意变量注入漏洞

Bugraq ID: 37094 PEAR NetTraceroute是一款基于PHP的执行路由跟踪的OS独立封装类。 当表单输入直接使用时，攻击者可以传递变量允许执行远程任意命令注入攻击。 PEAR NetTraceroute 0.21.1 PEAR NetTraceroute-0.21.2已经修复此漏洞，建议用户下载使用： http://download.pear.php.net/package/NetTraceroute-0.21.2.tgz pear upgrade NetTraceroute-0.21.2...

PEAR -- Net_Ping and Net_Traceroute remote arbitrary command injection

PEAR Security Advisory reports: Multiple remote arbitrary command injections have been found in the NetPing and NetTraceroute. When input from forms are used directly, the attacker could pass variables that would allow him to execute remote arbitrary command injections...