EUVD-2006-0482

Malware in sbrugna...

PHP-ping - 'Count' Command Execution

source: https://www.securityfocus.com/bid/9309/info It has been reported that php-ping may be prone to a remote command execution vulnerability that may allow remote attackers to execute commands on vulnerable systems. The problem exists due to insufficient sanitization of shell metacharacters vi...

PHP-ping - Count Command Execution

PHP-ping - Count Command Execution source: https://www.securityfocus.com/bid/9309/info It has been reported that php-ping may be prone to a remote command execution vulnerability that may allow remote attackers to execute commands on vulnerable systems. The problem exists due to insufficient...

PHP-Ping php-ping.php count Parameter Arbitrary Command Execution

The remote host appears to be running 'php-ping.php' from TheWorldsEnd.NET. The remote version of this script does not properly sanitize the 'count' parameter and allows attackers to execute arbitrary commands or read arbitrary files on the remote host subject to the privileges of the web server...

[SCSA-009] Remote Command Execution Vulnerability in PHP Ping

Security Corporation Security Advisory SCSA-009 PROGRAM: PHP Ping HOMEPAGE: http://www.phpapps.org/ VULNERABLE VERSIONS: v0.1 and prior DESCRIPTION PHP ping "will allow you, provided that your server turns under Windows, to realize a "ping" on the host of your choice." direct quote from PHP Ping...

PHP-Ping index.php pingto Parameter Arbitrary Code Execution

It is possible to make the remote host execute arbitrary DOS commands using the CGI phpping. An attacker may use this flaw to gain a shell with the privileges of the web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref: Message-ID: From: "Gregory Le Bras | Security Corporation" To...