66 matches found
EUVD-2002-0290
Malware in sbrugna...
EUVD-2002-1672
Malware in sbrugna...
EUVD-2011-0370
Malware in sbrugna...
EUVD-2002-0292
Malware in sbrugna...
EUVD-2007-5339
Malware in sbrugna...
Alcatel OmniPCX Enterprise Remote Code Execution Vulnerability
masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server allows remote attackers to execute arbitrary commands...
Alcatel OmniPCX Office FastJSDatacgi id2 Parameter Command Execution - Ver2 (CVE-2008-1331)
A command execution vulnerability has been reported in Alcatel-Lucent OmniPCX. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Alcatel-Lucent OmniPCX Enterprise masterCGI Arbitrary Command Execution
No description provided by source. $Id: alcatelomnipcxmastercgiexec.rb 10556 2010-10-05 23:13:04Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing...
Alcatel-Lucent OmniPCX Enterprise <= 7.1 Remote Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/25694/info Alcatel-Lucent OmniPCX Enterprise is prone to a remote command-execution vulnerability because it fails to adequately sanitize user-supplied data. Attackers can exploit this issue to execute arbitrary commands...
Alcatel-Lucent OmniPCX Enterprise Communication Server <= 7.1 - masterCGI Command Injection
No description provided by source...
Alcatel OmniPCX Office 210/061.1 - Remote Command Execution Vuln
No description provided by source...
Alcatel-Lucent OmniPCX Enterprise Remote Command Execution Vulnerability
Alcatel-Lucent OmniPCX Enterprise is prone to a remote command- execution vulnerability because it fails to adequately sanitize user- supplied data. Attackers can exploit this issue to execute arbitrary commands with the privileges of the 'httpd' user. Successful attacks may facilitate a compromi...
Alcatel-Lucent OmniPCX Enterprise RCE Vulnerability
Alcatel-Lucent OmniPCX Enterprise is prone to a remote command- execution vulnerability because it fails to adequately sanitize user- supplied data. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
Stack overflow
Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedded web server in the Communication Server CS in Alcatel-Lucent OmniPCX Enterprise before R9.0 H1.301.50 allow remote attackers to execute arbitrary code via crafted HTTP...
CVE-2011-0344
Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedded web server in the Communication Server CS in Alcatel-Lucent OmniPCX Enterprise before R9.0 H1.301.50 allow remote attackers to execute arbitrary code via crafted HTTP...
CVE-2011-0344
CVE-2011-0344 concerns multiple stack-based buffer overflows in unspecified CGI programs within the OmniPCX Enterprise CS web interface. The vulnerability arises when parsing certain HTTP headers, enabling a remote attacker to execute arbitrary code with the service’s privileges. Affected: OmniPC...
iDefense Security Advisory 03.01.11: Alcatel-Lucent OmniPCX Enterprise CS CGI Cookie Buffer Overflow Vulnerability
iDefense Security Advisory 03.01.11 http://labs.idefense.com/intelligence/vulnerabilities/ Mar 01, 2011 I. BACKGROUND The Alcatel-Lucent OmniPCX Enterprise Communication Server CS is a communication server platform that provides multimedia call processing for both Alcatel-Lucent and third-party...
Alcatel-Lucent OmniPCX Enterprise - masterCGI Arbitrary Command Execution (Metasploit)
$Id: alcatelomnipcxmastercgiexec.rb 10556 2010-10-05 23:13:04Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Alcatel-Lucent OmniPCX Enterprise masterCGI Arbitrary Command Execution
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Alcatel-Luce...
Alcatel-Lucent OmniPCX Enterprise masterCGI Arbitrary Command Execution
This module abuses a metacharacter injection vulnerability in the HTTP management interface of the Alcatel-Lucent OmniPCX Enterprise Communication Server 7.1 and earlier. The Unified Maintenance Tool contains a 'masterCGI' binary which allows an unauthenticated attacker to execute arbitrary...