8 matches found
Sun Cobalt RAQ Server Detection
Binary data 2741.prm...
CVE-2002-1361
CVE-2002-1361 affects Sun Cobalt RaQ4 with the Security Hardening Patch (SHP) installed. The overflow.cgi CGI script did not properly filter input, allowing a POST to set the email parameter to shell metacharacters and enabling remote code execution with superuser privileges. Public sources descr...
CVE-2002-1361
overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP Security Hardening Patch installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter...
[Full-Disclosure] Sun Cobalt RaQ Control Panel Multiple Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Sun Cobalt RaQ Control Panel Multiple Vulnerabilities - ------ PRODUCT: Cobalt RaQ Web Control Panel VENDOR: Sun - Cobal Networks VULNERABLE VERSIONS: - Sun Cobalt RaQ Servers Web Control Panel T.I.N.P - Tested in a default configurated Sun Cobalt RaQ...
Sun Cobalt RaQ Control Panel crossite scripting
Crossite scripting in message.cgi...
CVE-2002-1361
overflow.cgi CGI script in Sun Cobalt RaQ 4 with the SHP Security Hardening Patch installed allows remote attackers to execute arbitrary code via a POST request with shell metacharacters in the email parameter...
CVE-2002-0430
MultiFileUploadHandler.php in the Sun Cobalt RaQ XTR administration interface allows local users to bypass authentication and overwrite arbitrary files via a symlink attack on a temporary file, followed by a request to MultiFileUpload.php...
CVE-2002-0430
CVE-2002-0430 affects the Sun Cobalt RaQ XTR admin interface. The MultiFileUploadHandler.php allows a local attacker to bypass authentication via a symlink attack on a temporary file, then trigger MultiFileUpload.php to overwrite arbitrary files. The vulnerability is local with high attack comple...