Lucene search
K

4 matches found

seebug.org
seebug.org
added 2014/09/29 12:0 a.m.128 views

GNU bash Environment Variable Command Injection (MSF)

No description provided by source. require 'msf/core' class Metasploit3 Msf::Auxiliary include Msf::Exploit::Remote::HttpClient def initializeinfo = superupdateinfoinfo, 'Name' = 'bashedCgi', 'Description' = %q Quick & dirty module to send the BASH exploit payload CVE-2014-6271 to CGI scripts tha...

10CVSS9.7AI score0.99999EPSS
Exploits130
exploitpack
exploitpack
added 2014/09/25 12:0 a.m.121 views

GNU Bash - Environment Variable Command Injection (Metasploit)

GNU Bash - Environment Variable Command Injection Metasploit require 'msf/core' class Metasploit3 'bashedCgi', 'Description' = %q Quick & dirty module to send the BASH exploit payload CVE-2014-6271 to CGI scripts that are BASH-based or invoke BASH, to execute an arbitrary shell command. , 'Author...

10CVSS1.4AI score0.99999EPSS
Exploits130
Saint
Saint
added 2010/12/06 12:0 a.m.42 views

Oracle Secure Backup Administration preauth variable command injection

Added: 12/06/2010 CVE: CVE-2010-0906 BID: 41597 OSVDB: 67128 Background Oracle Secure Backup is a centralized tape backup management solution for Oracle Database. Problem A vulnerability in the Administration server allows remote, authenticated attackers to execute arbitrary commands which are...

9CVSS6.9AI score0.02243EPSS
Exploits12
Check Point Advisories
Check Point Advisories
added 2010/08/30 12:0 a.m.9 views

Oracle Secure Backup Administration selector Variable Command Injection (CVE-2010-0906)

Oracle Secure Backup is a backup solution allowing for single point of management of data present on network attached storage NAS devices and distributed hosts. A command execution vulnerability exists in Oracle Secure Backup server. The vulnerability is due to an insufficient sanitizing when...

9CVSS7.2AI score0.02243EPSS
Exploits12
Rows per page
Query Builder