13 matches found
CVE-2025-13809
A vulnerability has been found in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1. Affected by this issue is some unknown functionality of the file orion-ops-api/orion-ops-web/src/main/java/cn/orionsec/ops/controller/MachineInfoController.java of the component SSH Connection...
EUVD-2025-199957
A vulnerability has been found in orionsec orion-ops up to 5925824997a3109651bbde07460958a7be249ed1. Affected by this issue is some unknown functionality of the file orion-ops-api/orion-ops-web/src/main/java/cn/orionsec/ops/controller/MachineInfoController.java of the component SSH Connection...
Penelope - Shell Handler
Penelope is an advanced shell handler. Its main aim is to replace netcat as shell catcher during exploiting RCE vulnerabilities. It works on Linux and macOS and the only requirement is Python3. It is one script without 3rd party dependencies and hopefully it will stay that way. Among the main...
(0Day) Microsoft Windows PowerShell Shell Handler Command Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the shell handle...
CVE-2020-6799
CVE-2020-6799 is a vulnerability in Mozilla Firefox where command line arguments could be injected during Firefox invocation when Firefox is the default handler for non-default filetypes and a downloaded file is opened by a third‑party application that does not sanitize URL data. The issue could ...
CVE-2019-9794
A vulnerability was discovered where specific command line arguments are not properly discarded during Firefox invocation as a shell handler for URLs. This could be used to retrieve and execute files whose location is supplied through these command line arguments if Firefox is configured as the...
CVE-2019-9794
A vulnerability was discovered where specific command line arguments are not properly discarded during Firefox invocation as a shell handler for URLs. This could be used to retrieve and execute files whose location is supplied through these command line arguments if Firefox is configured as the...
MS14-027: Vulnerability in Windows Shell Handler Could Allow Elevation of Privilege (2962488)
A privilege escalation vulnerability exists on the remote Windows host due to improper handling of file associations. A local attacker could exploit this vulnerability to execute arbitrary code on the remote host under the privileges of the Local System account. C Tenable Network Security, Inc...
Microsoft Windows Shell Handler Privilege Escalation Vulnerability (2962488)
This host is missing an important security update according to Microsoft Bulletin MS14-027. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Windows Shell Handler Could Allow Remote Code Execution Vulnerability (975713)
This host is missing a critical security update according to Microsoft Bulletin MS10-007. OpenVAS Vulnerability Test $Id: secpodms10-007.nasl 5361 2017-02-20 11:57:13Z cfi $ Microsoft Windows Shell Handler Could Allow Remote Code Execution Vulnerability 975713 Authors: Veerendra GG Copyright:...
Microsoft Windows Shell Handler Could Allow Remote Code Execution Vulnerability (975713)
This host is missing a critical security update according to Microsoft Bulletin MS10-007. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Security Bulletin MS10-007 - Critical Vulnerability in Windows Shell Handler Could Allow Remote Code Execution (975713)
Microsoft Security Bulletin MS10-007 - Critical Vulnerability in Windows Shell Handler Could Allow Remote Code Execution 975713 Published: February 09, 2010 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Microsoft Windows 200...
MS10-007: Vulnerability in Windows Shell Handler Could Allow Remote Code Execution (975713)
The ShellExecute API function on the remote host fails to properly validate URLs, which could result in arbitrary code execution. A remote attacker could exploit this by tricking a user into making an application e.g. web browser pass specially crafted data to the vulnerable function, resulting i...