Lucene search
+L

13 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Symantec Backup Exec System Recovery Manager 7.0 FileUpload Class Unauthorized File Upload Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27487/info Symantec Backup Exec System Recovery Manager is prone to a vulnerability that allows arbitrary unauthorized files to be uploaded to any location on the affected server. This issue resides in the Symantec...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.19 views

Backup Exec System Recovery Manager <= 7.0.1 File Upload Exploit

No description provided by source. ?xml version=1.0? html xmlns=http://www.w3.org/1999/xhtml headtitleFile Upload POC/title/head body h2 Backup Exec System Recovery Manager 7.0brFile Upload POC/h2 form action=https://TARGET:8443/axis/FileUpload method=post enctype=multipart/form-data Remote Path:...

7.1AI score
Exploits0
NVD
NVD
added 2008/06/02 9:30 p.m.14 views

CVE-2008-2512

Directory traversal vulnerability in Symantec Backup Exec System Recovery Manager 7.x before 7.0.4 and 8.x before 8.0.2 allows remote attackers to read arbitrary files via unspecified vectors...

5CVSS6.7AI score0.02787EPSS
Exploits0References6
Prion
Prion
added 2008/06/02 9:30 p.m.15 views

Directory traversal

Directory traversal vulnerability in Symantec Backup Exec System Recovery Manager 7.x before 7.0.4 and 8.x before 8.0.2 allows remote attackers to read arbitrary files via unspecified vectors...

5CVSS7.2AI score0.02787EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2008/06/02 2:0 p.m.28 views

CVE-2008-2512

Directory traversal vulnerability in Symantec Backup Exec System Recovery Manager 7.x before 7.0.4 and 8.x before 8.0.2 allows remote attackers to read arbitrary files via unspecified vectors...

6.7AI score0.02787EPSS
Exploits0References6
CVE
CVE
added 2008/06/02 2:0 p.m.48 views

CVE-2008-2512

CVE-2008-2512 is a directory-traversal vulnerability in Symantec Backup Exec System Recovery Manager (BESR) (7.x before 7.0.4 and 8.x before 8.0.2). A remote, unauthenticated attacker can exploit an inadequate sanitization in the Tomcat-based servlet (reportsfile) to read arbitrary files on the a...

5CVSS6.7AI score0.02787EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/05/29 12:0 a.m.46 views

Symantec Backup Exec System Recovery Manager Traversal Arbitrary File Access

The remote host appears to be running Symantec Backup Exec System Recovery Manager, a backup manager solution. The Tomcat servlet 'reportsfile' included in the version of Backup Exec System Recovery Manager installed on the remote host fails to properly sanitize user input to the 'filename'...

5CVSS5.8AI score0.02787EPSS
Exploits0References2
seebug.org
seebug.org
added 2008/02/14 12:0 a.m.28 views

Symantec Backup Exec系统还原管理器FileUpload类非授权文件上传漏洞

BUGTRAQ ID: 27487 CVECAN ID: CVE-2008-0457 Symantec Backup Exec是一款全面的数据备份解决方案。 Symantec Backup Exec系统还原管理器的运行在Symantec LiveState Apache Tomcat服务器(TCP 8080端口)上的FileUpload类存在安全漏洞。如果远程攻击者向该服务器提交了恶意的HTTP POST请求的话,就可以向公开可访问的web目录上传JSP脚本,导致执行任意代码。 Symantec Backup Exec System Recovery Manager 7.0.1...

10CVSS6.4AI score0.11863EPSS
Exploits3
seebug.org
seebug.org
added 2008/02/09 12:0 a.m.16 views

Backup Exec System Recovery Manager &lt;= 7.0.1 File Upload Exploit

No description provided by source. ?xml version="1.0"? html xmlns="http://www.w3.org/1999/xhtml" headtitleFile Upload POC/title/head body h2 Backup Exec System Recovery Manager 7.0brFile Upload POC/h2 form action="https://TARGET:8443/axis/FileUpload" method="post" enctype="multipart/form-data"...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/02/08 12:0 a.m.33 views

backupexec-upload.txt

File Upload POC Backup Exec System Recovery Manager 7.0File Upload POC :8443/axis/FileUpload" method="post" enctype="multipart/form-data" Remote Path: File to upload: cBastardLabs 2008...

7.4AI score
Exploits0
0day.today
0day.today
added 2008/02/07 12:0 a.m.21 views

Backup Exec System Recovery Manager <= 7.0.1 File Upload Exploit

Exploit for unknown platform in category remote exploits ================================================================ Backup Exec System Recovery Manager File Upload POC Backup Exec System Recovery Manager 7.0File Upload POC :8443/axis/FileUpload" method="post" enctype="multipart/form-data"...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/02/07 12:0 a.m.18 views

Backup Exec System Recovery Manager 7.0.1 - Arbitrary File Upload

Backup Exec System Recovery Manager 7.0.1 - Arbitrary File Upload File Upload POC Backup Exec System Recovery Manager 7.0File Upload POC :8443/axis/FileUpload" method="post" enctype="multipart/form-data" Remote Path: File to upload: cBastardLabs 2008. milw0rm.com 2008-02-07...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2007/01/05 12:0 a.m.13 views

Symantec Backup Exec System Recovery Manager 7.0 - FileUpload Class Unauthorized File Upload

Symantec Backup Exec System Recovery Manager 7.0 - FileUpload Class Unauthorized File Upload source: https://www.securityfocus.com/bid/27487/info Symantec Backup Exec System Recovery Manager is prone to a vulnerability that allows arbitrary unauthorized files to be uploaded to any location on the...

0.3AI score
Exploits0
Rows per page
Query Builder