PT-2016-3291

Name of the Vulnerable Software and Affected Versions OpenSSH versions 5.x through 7.x before 7.1p2 Description The issue is related to the roaming read and roaming write functions in OpenSSH, which do not properly maintain connection file descriptors when certain proxy and forward options are...

Endian Firewall 3.0.0 - OS Command Injection (Python)

Endian Firewall 3.0.0 - OS Command Injection Python !/usr/bin/env python Endian Firewall Proxy User Password Change /cgi-bin/chpasswd.cgi OS Command Injection Exploit POC Reverse TCP Shell Ben Lincoln, 2015-06-28 http://www.beneaththewaves.net/ Requires knowledge of a valid proxy username and...

CVE-2004-1011

Stack-based buffer overflow in Cyrus IMAP Server 2.2.4 through 2.2.8, with the imapmagicplus option enabled, allows remote attackers to execute arbitrary code via a long 1 PROXY or 2 LOGIN command, a different vulnerability than CVE-2004-1015...

PT-2004-1607 · Apple · Apple Macos +1

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 10.3.3 on Mac OS Description: The issue concerns an argument injection vulnerability in the SSH URI handler for Safari. This vulnerability allows remote attackers to execute arbitrary code via the ProxyCommand option ...