artmedic_links5 remote file access exploit

You can read details of this vulnerability here: http://www.securityfocus.com/archive/1/367144 Very simple source of exploit, enjoy. / artmediclinks5 remote file access exploit Adam Simuntis [email protected] / include stdio.h include stdlib.h include arpa/inet.h include sys/types.h include sys/socket.h...

Coppermine Photo Gallery < 1.3.2 Multiple SQL Injections

According to its version number, the version of Coppermine Photo Gallery installed on the remote host suffers from multiple SQL injection vulnerabilities due to its failure to sanitize user-supplied cookie data before using it in SQL queries in the scripts 'include/functions.inc.php' as well as...

CERN httpd Double Slash Protected Webpage Bypass

The remote web server allows an attacker to access protected web pages by replacing slashes in the URL with '//' or '/./', which is a known problem in older versions of CERN web server. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid17230; scriptversion"1.19";...

News Server (NNTP) Anonymous Read / Write Access

The remote server seems open to remote users. Some people prefer open public NNTP servers to be able to read or post articles anonymously. Unwanted connections could waste your bandwidth or put you into legal trouble if a malicious person were to use your server to post abusive articles. Keep in...

Cisco ONS Multiple Remote Vulnerabilities (20040219-ONS)

According to its version number, the remote Cisco ONS platform has the following vulnerabilities : - The TFTP server allows unauthenticated access to TFTP GET and PUT commands. An attacker may exploit this flaw to upload or retrieve the system files of the remote ONS platform. - A denial of servi...

POP Password Changer (poppassd_pam) Arbitrary User Remote Password Modification

The remote host is running POP Password Changer, a server to change POP user's passwords. According to the version number, the remote software is vulnerable to an unauthorized access. An attacker, exploiting this flaw, will be able to change user's password. C Tenable Network Security, Inc...

CVE-2002-1510

xdm, with the authComplain variable set to false, allows arbitrary attackers to connect to the X server if the xdm auth directory does not exist...

GLSA-200402-04 : Gallery 1.4.1 and below remote exploit vulnerability

The remote host is affected by the vulnerability described in GLSA-200402-04 Gallery 1.4.1 and below remote exploit vulnerability Starting in the 1.3.1 release, Gallery includes code to simulate the behaviour of the PHP 'registerglobals' variable in environments where that setting is disabled. It...

QuiXplorer directory traversal

Title: QuiXplorer directory traversal Affects: = QuiXplorer 2.3 Effect: file disclosure, web server's user read access Id: cbsa-0003 Release Date: 2004 08 14 Author: Cyrille Barthelemy [email protected] -- 1. Introduction ------------------ From QuiXplorer documentation : "QuiXplorer is a...

APC PowerChute DoS

It's possible to prevent access to server or agent...

[UNIX] Singapore MD5 Administrative Password Disclosure

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

CVS Client Traversal Arbitrary File Retrieval

According to its version number, the remote CVS server has a directory directory traversal vulnerability. This could allow a malicious client to read files outside of the CVS root. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid12212; scriptversion "1.16";...

ADA IMGSVR 0.4 - Arbitrary File Download

ADA IMGSVR 0.4 - Arbitrary File Download source: https://www.securityfocus.com/bid/10027/info A vulnerability has been reported in the ImgSvr server software that may allow a remote user to the retrieve arbitrary files from the web server root directory and any subdirectories therein. An attacker...

file disclosure in phpMyAdmin

Lack of proper input validation in phpMyAdmin may allow an attacker to obtain the contents of any file on the target system that is readable by the web server...

ApacheSSL protection bypass

In basic authentication emulation mode it's possible to access server without certificate...

phpMyAdmin export.php what Parameter Traversal Arbitrary File Access

There is a bug in the remote version of phpMyAdmin that may allow an attacker to read arbitrary files on the remote web server with the privileges of the web user or even execute arbitrary PHP code. Successful exploitation of this issue requires that PHP's 'magicquotesgpc' setting be disabled...

consroot.exp

Hi there, here is a fully automated script for getting a root shell using a normal user account and remote-console acces. The Script was written by me based on an article from phrack.com article 53 - hacking forth by mudge ---snip--- --- consroot.exp " puts "\twhere MODE is one of:" puts "\t\tT =...

Vulnerability in WWW&FTP SERVER 6.3

ZUD SECURITY TEAM PRESENT bug found by nimber Email : [email protected] Site: www.zudteam.org Application: WWW&FTP SERVER 6.3 Versions: 6.3 and all Platform: Windows Web Site: www.evgenyk78.chat.ru Bug: See any files in system. Exploit: www.server.com/../test.txt or www.server.com/../www/index.h...

MegaBrowser 0.3 - HTTP Directory Traversal

MegaBrowser 0.3 - HTTP Directory Traversal source: https://www.securityfocus.com/bid/7802/info The MegaBrowser HTTP server component is prone to a file disclosure vulnerability. Directory traversal sequences may be used to break out of the web root directory. Attackers may gain access to files th...

PFTP Cleartext Local Password Disclosure

The remote web server is running PFTP. This software stores the list of user names and passwords in clear text in \Program Files\PFTP\PFTPUSERS3.USR. An attacker with a full access to this host may use this flaw to gain access to other FTP servers used by the same users. C Tenable Network Securit...