CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

securityvulns•added 2007/12/27 12:0 a.m.•55 views

PHP -> set_time_limit

when safemode = on, settimelimit is "off", then we can use iniset"maxexecutiontime", 90000000; suppose the server is vulnerable PHP injection, then an attacker make a backdoor in PHP and register it in SCM of windows with win32service extension. the backdoor need wait for connections, if safemode...

0.8AI score

Exploits0

seebug.org•added 2007/08/08 12:0 a.m.•24 views

PHP Win32Service扩展Safe_Mode限制绕过漏洞

PHP是一款广泛使用的WEB开发脚本语言。 PHP Win32Service扩展存在'safemode'限制绕过问题，远程攻击者可以利用漏洞绕过安全限制，执行受限PHP代码。在共享主机的配置下，多个用户可以建立和执行任意PHP脚本代码受此漏洞影响。攻击者可以构建恶意WEB页，绕过'safemode'的用户隔离限制，以WEB权限执行受限代码。 PHP PHP 5.2.1 + Ubuntu Ubuntu Linux 7.04 sparc + Ubuntu Ubuntu Linux 7.04 powerpc + Ubuntu Ubuntu Linux 7.04 i386 + Ubuntu...

7.1AI score

Exploits0

seebug.org•added 2007/07/28 12:0 a.m.•17 views

PHP 5.x (win32service) Local Safe Mode Bypass Exploit

No description provided by source. ?php PHP Safemode bypass exploit win32service Note: Tested on 5.2.1 Author: NetJackal Email: nima501atyahoodotcom Website: http://netjackal.by.ru ...

7.1AI score

Exploits0

Packet Storm•added 2007/07/28 12:0 a.m.•16 views

phpsafemode-bypass.txt

$n,'display'=$n,'path'=$cmd,'params'="/c $command "$name""; win32startservice$n; win32stopservice$n; win32deleteservice$n; $exec=filegetcontents$name; unlink$name; echo ""...

7.4AI score

Exploits0

securityvulns•added 2007/07/27 12:0 a.m.•29 views

PHP win32service extension protection bypass

Service management functions ara available from safe mode...

3.2AI score

Exploits0References1Affected Software1

0day.today•added 2007/07/27 12:0 a.m.•26 views

PHP 5.x (win32service) Local Safe Mode Bypass Exploit

Exploit for unknown platform in category local exploits ===================================================== PHP 5.x win32service Local Safe Mode Bypass Exploit ===================================================== $n,'display'=$n,'path'=$cmd,'params'="/c $command "$name""; win32startservice$n;...

6.8AI score

Exploits0

securityvulns•added 2007/07/27 12:0 a.m.•90 views

PHP Safe_mode bypass exploit (win32service)

?php PHP Safemode bypass exploit win32service Note: Tested on 5.2.1 Author: NetJackal Email: nima501atyahoodotcom Website: http://netjackal.by.ru Usage: http://victim.net/nj.php?CMD=command $command=isset$GET'CMD'?$GET'CMD':'dir'; cammand $dir=iniget'uploadtmpdir'; Directory to store command's...

0.4AI score

Exploits0

exploitpack•added 2007/07/27 12:0 a.m.•13 views

PHP 5.x - Win32service Local Safe_Mode() Bypass

PHP 5.x - Win32service Local SafeMode Bypass $n,'display'=$n,'path'=$cmd,'params'="/c $command "$name""; win32startservice$n; win32stopservice$n; win32deleteservice$n; $exec=filegetcontents$name; unlink$name; echo "".htmlspecialchars$exec.""; ? milw0rm.com 2007-07-27...

7.4AI score

Exploits0

Exploit DB•added 2007/07/27 12:0 a.m.•40 views

PHP 5.x - 'Win32service' Local 'Safe_Mode()' Bypass

$n,'display'=$n,'path'=$cmd,'params'="/c $command "$name""; win32startservice$n; win32stopservice$n; win32deleteservice$n; $exec=filegetcontents$name; unlink$name; echo "".htmlspecialchars$exec.""; ? milw0rm.com 2007-07-27...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by