157 matches found
Fonality trixbox 2.2.4 - PhonecDirectory.php SQL Injection
Fonality trixbox 2.2.4 - PhonecDirectory.php SQL Injection Software Link: http://trixbox.org/downloads Version: 2.2.4 Code : http://server/cisco/services/PhoneDirectory.php?ID=1 SQL INJECTION Example Grab users / password hashes from sugarcrm http://server/cisco/services/PhoneDirectory.php?ID=1'...
Directory traversal
Directory traversal vulnerability in user/index.php in Fonality trixbox CE 2.6.1 and earlier allows remote attackers to include and execute arbitrary files via a .. dot dot in the langChoice parameter...
CVE-2008-6825
Directory traversal vulnerability in user/index.php in Fonality trixbox CE 2.6.1 and earlier allows remote attackers to include and execute arbitrary files via a .. dot dot in the langChoice parameter...
CVE-2008-6825
Directory traversal vulnerability in user/index.php in Fonality trixbox CE 2.6.1 and earlier allows remote attackers to include and execute arbitrary files via a .. dot dot in the langChoice parameter...
CVE-2008-6825
CVE-2008-6825 is a directory traversal/local file inclusion vulnerability in Fonality trixbox CE 2.6.1 and earlier, exposed via the langChoice parameter in user/index.php. The underlying issue is improper handling of the langChoice input, enabling an attacker to include and execute arbitrary file...
Authentication flaw
Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreje...
CVE-2008-3903
Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreje...
DEBIAN-CVE-2008-3903
Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreje...
CVE-2008-3903
Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreje...
CVE-2008-3903
CVE-2008-3903 affects Asterisk and related builds (1.2.x, 1.4.x, 1.6.x, Asterisk Business Edition, s800i, Trixbox) where Digest authentication with authalwaysreject yields different SIP responses based on whether a username is valid, enabling remote username enumeration. Public advisories (Debian...
CVE-2008-3903
Asterisk Open Source 1.2.x before 1.2.32, 1.4.x before 1.4.24.1, and 1.6.0.x before 1.6.0.8; Asterisk Business Edition A.x.x, B.x.x before B.2.5.8, C.1.x.x before C.1.10.5, and C.2.x.x before C.2.3.3; s800i 1.3.x before 1.3.0.2; and Trixbox PBX 2.6.1, when Digest authentication and authalwaysreje...
trixbox261-pwn.txt
!/usr/bin/python TrixBox 2.6.1 langChoice remote root exploit muts from offensive-security.com chris from offensive-security.com All credits to Jean-Michel BESNARD Same same, but different. http://www.offensive-security.com/0day/trixbox.py.txt id uid=0root gid=0root...
trixbox 2.6.1 (langChoice) Remote Root Exploit (py)
No description provided by source. !/usr/bin/python TrixBox 2.6.1 langChoice remote root exploit muts from offensive-security.com chris from offensive-security.com All credits to Jean-Michel BESNARD [email protected] Same same, but different. http://www.offensive-security.com/0day/trixbox.py.tx...
Fonality trixbox 2.6.1 - langChoice Remote Code Execution (Python)
Fonality trixbox 2.6.1 - langChoice Remote Code Execution Python !/usr/bin/python TrixBox 2.6.1 langChoice remote root exploit muts from offensive-security.com All credits to Jean-Michel BESNARD Same same, but different. http://www.offensive-security.com/0day/trixbox.py.txt id uid=0root gid=0root...
trixbox 2.6.1 (langChoice) Remote Root Exploit (py)
Exploit for linux platform in category remote exploits =================================================== trixbox 2.6.1 langChoice Remote Root Exploit py =================================================== !/usr/bin/python TrixBox 2.6.1 langChoice remote root exploit muts from...
trixbox-lfi.txt
I have discovered a file inclusion in Trixbox that may be exploited to run arbitrary code and eventually obtain a root shell. The vendor Fonality has been noticed about this issue. They have fixed it and shall release a patch this week. I have already posted an exploit giving a shell with...
trixbox (langChoice) Local File Inclusion Exploit (connect-back) v2
Exploit for linux platform in category remote exploits =================================================================== trixbox langChoice Local File Inclusion Exploit connect-back v2 =================================================================== !/usr/bin/perl -w Jean-Michel BESNARD /...
trixbox (langChoice) Local File Inclusion Exploit (connect-back)
No description provided by source. !/usr/bin/perl -w Jean-Michel BESNARD - LEXSI Audit 2008-07-08 perl trixboxfi.pl 192.168.1.212 Please listen carefully as our menu option has changed Choose from the following options: 1 Remote TCP shell 2 Read local file 1 Host and port the reverse shell should...
Fonality trixbox - langChoice Local File Inclusion (connect-back) (2)
Fonality trixbox - langChoice Local File Inclusion connect-back 2 !/usr/bin/perl -w Jean-Michel BESNARD / LEXSI Audit 2008-07-09 This is an update of the previous exploit. We can now get a root shell, thanks to sudo. perl trixboxfiv2.pl 192.168.1.212 Please listen carefully as our menu option has...
Fonality trixbox - 'langChoice' Local File Inclusion (connect-back) (2)
!/usr/bin/perl -w Jean-Michel BESNARD / LEXSI Audit 2008-07-09 This is an update of the previous exploit. We can now get a root shell, thanks to sudo. perl trixboxfiv2.pl 192.168.1.212 Please listen carefully as our menu option has changed Choose from the following options: 1 Remote TCP shell 2...