286 matches found
CVE-2013-1662
CVE-2013-1662 affects VMware Workstation (8.x/9.x) and VMware Player (4.x/5.x) on Debian-based systems. A local attacker can escalate privileges to root by exploiting a crafted lsb_release binary in PATH via vmware-mount’s use of popen(3). The issue is rooted in how vmware-mount handles PATH and ...
VMware - Setuid VMware-mount Popen lsb_release Privilege Escalation
VMware - Setuid VMware-mount Popen lsbrelease Privilege Escalation // Source: http://blog.cmpxchg8b.com/2013/08/security-debianisms.html On most modern Linux systems, /bin/sh is provided by bash, which detects that it's being invoked as sh, and attempts to mimic traditional sh. As everyone who...
Ruby Command Shell, Reverse TCP SSL
Connect back and create a command shell via Ruby, uses SSL This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 444 include Msf::Payload::Single include Msf::Payload::Ruby include...
Zenoss 3 showDaemonXMLConfig Command Execution
This module exploits a command execution vulnerability in Zenoss 3.x which could be abused to allow authenticated users to execute arbitrary code under the context of the 'zenoss' user. The showdaemonxmlconfigs function in the 'ZenossInfo.py' script calls Popen with user controlled data from the...
PHP-Barcode 0.3pl1 - Remote Code Execution
PHP-Barcode 0.3pl1 Remote Code Execution The input passed to the code parameter is not sanitized and is used on a popen function. This allows remote command execution and also allows to see environment vars: Windows http://www.site.com/php-barcode/barcode.php?code=%TMP% Linux...
PHP-Barcode 0.3pl1 - Remote Code Execution
PHP-Barcode 0.3pl1 - Remote Code Execution PHP-Barcode 0.3pl1 Remote Code Execution The input passed to the code parameter is not sanitized and is used on a popen function. This allows remote command execution and also allows to see environment vars: Windows...
PHP-Barcode 0.3pl1 Remote Code Execution
No description provided by source. PHP-Barcode 0.3pl1 Remote Code Execution The input passed to the code parameter is not sanitized and is used on a popen function. This allows remote command execution and also allows to see environment vars: Windows...
PHP-Barcode 0.3pl1 Remote Code Execution
PHP-Barcode 0.3pl1 Remote Code Execution ================================= The input passed to the code parameter is not sanitized and is used on a popen function. This allows remote command execution and also allows to see environment vars: Windows...
SuSE Update for xorg-x11 SUSE-SA:2011:016
Check for the Version of xorg-x11 OpenVAS Vulnerability Test SuSE Update for xorg-x11 SUSE-SA:2011:016 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
RedHat Update for kernel RHSA-2011:0163-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
ClamAV Milter - Blackhole-Mode Remote Code Execution (Metasploit)
$Id: clamavmilterblackhole.rb 10617 2010-10-09 06:55:52Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
PHP-Fusion - Remote Command Execution
PHP-Fusion - Remote Command Execution Exploit Title: PHP-Fusion Remote Command Execution Vulnerability Date: 2010/07/19 Author: ViRuS Qalaa Email: [email protected] My Sites : www.pal-mafia.com & www.vbspiders.com Script home: http://www.phpfusion-ar.com download Script:...
PHP-Fusion Remote Command Execution Vulnerability
Exploit for php platform in category web applications ================================================= PHP-Fusion Remote Command Execution Vulnerability ================================================= Exploit Title: PHP-Fusion Remote Command Execution Vulnerability Date: 2010/07/19 Author: ViR...
PHP-Fusion Remote Command Execution
Exploit Title: PHP-Fusion Remote Command Execution Vulnerability Date: 2010/07/19 Author: ViRuS Qalaa Email: [email protected] My Sites : www.pal-mafia.com & www.vbspiders.com Script home: http://www.phpfusion-ar.com download Script: http://www.phpfusion-ar.com/downloads.php?catid=1&downloadid=91...
CoreHTTP CGI支持远程命令执行漏洞
BUGTRAQ ID: 37454 CoreHTTP是一款小型的Web服务器。 CoreHTTP服务器的http.c文件没有正确的过滤用户输入便调用了popen,这允许攻击者使用标准的Web浏览器执行任意命令: / escape the url for " and \ since we use it in popen / for i = 0; i PATHSIZE; i++ if urli == '\0' break; else if urli == '\' || urli == '"' || urli == ''' find = url + i; strcpytemp, find;...
CoreHTTP 0.5.3.1 - CGI Arbitrary Command Execution
CoreHTTP 0.5.3.1 - CGI Arbitrary Command Execution Package name: CoreHTTP server Version: 0.5.3.1 and below as long as cgi support is enabled Software URL: http://corehttp.sourceforge.net/ Exploit: http://aconole.brad-x.com/programs/corehttpcgienabled.rb Issue: CoreHTTP server fails to properly...
CoreHTTP Arbitrary Command Execution Vulnerability
Exploit for unknown platform in category remote exploits ================================================== CoreHTTP Arbitrary Command Execution Vulnerability ================================================== Title: CoreHTTP Arbitrary Command Execution Vulnerability CVE-ID: OSVDB-ID: Author: Aar...
PHP 5.3.x < 5.3.1 Multiple Vulnerabilities
Binary data 5242.prm...
PHP 5.3.x < 5.3.1 Multiple Vulnerabilities
Binary data 801090.prm...
ClamAV Milter Blackhole-Mode Remote Code Execution
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'ClamAV Milte...