Lucene search
K

10 matches found

Packet Storm
Packet Storm
added 2017/09/29 12:0 a.m.140 views

Qmail SMTP Bash Environment Variable Injection (Shellshock)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Qmail SMTP Bash Environment Variable Injection Shellshock', 'Description' = %q This module exploits a shellshock vulnerability on Qmail, a public...

10CVSS1.4AI score0.99999EPSS
Exploits131
Packet Storm
Packet Storm
added 2015/12/02 12:0 a.m.93 views

Advantech Switch Bash Environment Variable Code Injection

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Advantech Switch Bash Environment Variable Code Injection Shellshock', 'Description' = %q This module exploits the Shellshock...

10CVSS1AI score0.99999EPSS
Exploits131
0day.today
0day.today
added 2015/12/02 12:0 a.m.91 views

Advantech Switch Bash Environment Variable Code Injection Exploit

This Metasploit module exploits the Shellshock vulnerability, a flaw in how the Bash shell handles external environment variables. This Metasploit module targets the 'ping.sh' CGI script, accessible through the Boa web server on Advantech switches. This Metasploit module was tested against firmwa...

10CVSS0.3AI score0.99999EPSS
Exploits131
Exploit DB
Exploit DB
added 2015/12/02 12:0 a.m.82 views

Advantech Switch - 'Shellshock' Bash Environment Variable Command Injection (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit4 'Advantech Switch Bash Environment Variable Code Injection Shellshock', 'Description' = %q This module exploits the Shellshock...

10CVSS10AI score0.99999EPSS
Exploits131
Saint
Saint
added 2014/11/05 12:0 a.m.109 views

Bash Environment Variable Handling Shell Command Injection Via CUPS

Added: 11/05/2014 CVE: CVE-2014-6271 BID: 70103 OSVDB: 112004 Background GNU Bash Bourne Again SHell is a command shell commonly used on Linux and Unix systems. CUPS is printing software for UNIX-like systems that allows a computer to act as a print server. Problem The Bash shell executes command...

10CVSS10AI score0.99999EPSS
Exploits131
Metasploit
Metasploit
added 2014/09/26 4:37 a.m.64 views

DHCP Client Bash Environment Variable Code Injection (Shellshock)

This module exploits the Shellshock vulnerability, a flaw in how the Bash shell handles external environment variables. This module targets dhclient by responding to DHCP requests with a malicious hostname, domainname, and URL which are then passed to the configuration scripts as environment...

9.8CVSS10AI score0.99999EPSS
Exploits131
Saint
Saint
added 2014/09/26 12:0 a.m.115 views

Bash environment variable code injection over HTTP

Added: 09/26/2014 CVE: CVE-2014-6271 BID: 70103 OSVDB: 112004 Background GNU Bash Bourne Again SHell is a command shell commonly used on Linux and Unix systems. Problem The Bash shell executes commands injected after function definitions contained in environment variables. This could be used by a...

10CVSS10AI score0.99999EPSS
Exploits131
Saint
Saint
added 2014/09/26 12:0 a.m.196 views

Bash environment variable code injection over HTTP

Added: 09/26/2014 CVE: CVE-2014-6271 BID: 70103 OSVDB: 112004 Background GNU Bash Bourne Again SHell is a command shell commonly used on Linux and Unix systems. Problem The Bash shell executes commands injected after function definitions contained in environment variables. This could be used by a...

10CVSS10AI score0.99999EPSS
Exploits131
Saint
Saint
added 2014/09/26 12:0 a.m.112 views

Bash environment variable code injection over HTTP

Added: 09/26/2014 CVE: CVE-2014-6271 BID: 70103 OSVDB: 112004 Background GNU Bash Bourne Again SHell is a command shell commonly used on Linux and Unix systems. Problem The Bash shell executes commands injected after function definitions contained in environment variables. This could be used by a...

10CVSS10AI score0.99999EPSS
Exploits131
Metasploit
Metasploit
added 2014/09/25 6:26 p.m.226 views

Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)

This module exploits the Shellshock vulnerability, a flaw in how the Bash shell handles external environment variables. This module targets CGI scripts in the Apache web server by setting the HTTPUSERAGENT environment variable to a malicious function definition. This module requires Metasploit:...

9.8CVSS10AI score0.99999EPSS
Exploits148
Rows per page
Query Builder