EUVD-2008-3273

Malware in sbrugna...

SmbClientParser 2.7 Perl Module Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30290/info The SmbClientParser Perl module is prone to a remote command-execution vulnerability because it fails to sufficiently sanitize user-supplied data. Successfully exploiting this issue will allow an attacker to...

Code injection

The Filesys::SmbClientParser module 2.7 and earlier for Perl allows remote SMB servers to execute arbitrary code via a folder name containing shell metacharacters...

CVE-2008-3285

The Filesys::SmbClientParser module 2.7 and earlier for Perl allows remote SMB servers to execute arbitrary code via a folder name containing shell metacharacters...

CVE-2008-3285

The Filesys::SmbClientParser module 2.7 and earlier for Perl allows remote SMB servers to execute arbitrary code via a folder name containing shell metacharacters...

CVE-2008-3285

The vulnerability affects the Perl module Filesys::SmbClientParser (versions up to 2.7). The root cause is that folder names containing shell metacharacters enable a remote SMB server to run arbitrary code, as described in CVE-2008-3285. The impact is remote code execution with high risk. No reme...

SmbClientParser shell characters vulnerability

Shell characters vulnerability with shared folder names...

[ISecAuditors Security Advisories] SmbClientParser Perl module allows remote command execution

============================================= INTERNET SECURITY AUDITORS ALERT 2006-006 - Original release date: February 28, 2006 - Last revised: July 18th, 2008 - Discovered by: Jesus Olmos Gonzalez - Severity: 5/5 ============================================= I. VULNERABILITY...

SmbClientParser Perl模块远程命令执行漏洞

BUGTRAQ ID: 30290 CNCAN ID：CNCAN-2008072103 SmbClientParser是一款写Netbios交互代码的Perl模块。 SmbClientParser不正确过滤用户提交的数据，远程攻击者可以利用漏洞以使用此模块的应用程序权限执行任意命令。 如果一个主机使用这个模块的工具扫描你的共享文件夹，可以在主机上执行SHELL命令。 此模块包含如下代码： my @var = $pargs; pargs使用如下的过滤器解析： my $pargs; if $args=/^^;$/ no ';' nickel $pargs=$1; elsif $smbscri...

SmbClientParser 2.7 Perl Module - Remote Command Execution

SmbClientParser 2.7 Perl Module - Remote Command Execution source: https://www.securityfocus.com/bid/30290/info The SmbClientParser Perl module is prone to a remote command-execution vulnerability because it fails to sufficiently sanitize user-supplied data. Successfully exploiting this issue wil...

smbclientparser-exec.txt

============================================= INTERNET SECURITY AUDITORS ALERT 2006-006 - Original release date: February 28, 2006 - Last revised: July 18th, 2008 - Discovered by: Jesus Olmos Gonzalez - Severity: 5/5 ============================================= I. VULNERABILITY...

SmbClientParser 2.7 Perl Module - Remote Command Execution

source: https://www.securityfocus.com/bid/30290/info The SmbClientParser Perl module is prone to a remote command-execution vulnerability because it fails to sufficiently sanitize user-supplied data. Successfully exploiting this issue will allow an attacker to execute arbitrary commands with the...