«
Expand/Collapse
263 items tagged "command"
Related tags:
vulnerability [+],
spreecommerce [+],
gitorious [+],
execution [+],
version 6 [+],
ruby [+],
php [+],
pasv [+],
information disclosure [+],
buffer overflow vulnerability [+],
awstats [+],
active x [+],
websense [+],
triton [+],
solarftp [+],
security [+],
room [+],
proof of concept [+],
lifesize [+],
exploit [+],
exec [+],
cyrus imapd [+],
cyber [+],
backdoor [+],
alegrocart [+],
winamp [+],
vsa [+],
txt [+],
sudo [+],
store [+],
skyrouter [+],
shellcode [+],
nexus [+],
multiple [+],
mac app [+],
line [+],
information [+],
help [+],
directory traversal vulnerability [+],
ctek [+],
cisco nexus [+],
buffer overflow [+],
arbitrary commands [+],
arbitrary [+],
apache [+],
Tools [+],
zope versions [+],
zope [+],
xcloner [+],
wmitools [+],
websvn [+],
vulnerable resource [+],
vmware tools [+],
vmware [+],
virusscan [+],
videoconferencing system [+],
videoconferencing [+],
version v1 [+],
vbseo [+],
valid credentials [+],
tar bz2 [+],
systemtap [+],
system [+],
support cgi [+],
sudo command [+],
smarterstats [+],
smartclient [+],
session management [+],
session id cookie [+],
scm tool [+],
scm [+],
sap netweaver [+],
sap [+],
root shell [+],
root [+],
room 3 [+],
restorepoint [+],
redmine [+],
privilege escalation vulnerability [+],
pls file [+],
plone [+],
phpfox [+],
phpalbum [+],
php scripts [+],
phion [+],
pasv command [+],
passwords [+],
nx os [+],
nttp [+],
newv [+],
network node manager [+],
netweaver [+],
monitor [+],
modprob [+],
modacom [+],
mcafee [+],
mandriva linux [+],
majordomo [+],
local privilege escalation [+],
live [+],
line string [+],
line 6 [+],
license [+],
joomla [+],
ip cameras [+],
idefense security advisory [+],
idefense [+],
hub [+],
hacks [+],
group [+],
gain root privileges [+],
forgery [+],
foomatic [+],
fix [+],
firewall [+],
external authentication [+],
evaluation [+],
dotnetnuke [+],
dos command [+],
digicom [+],
cross site scripting [+],
credential service [+],
cpassman [+],
command environment [+],
command directory [+],
code execution [+],
citrix [+],
cisco unified [+],
center [+],
cameras [+],
authentication scheme [+],
authentication mechanism [+],
authentication [+],
astaro [+],
archive [+],
anfibia [+],
ajax [+],
BackTrack [+],
xsl [+],
vulnerabilities [+],
vpn firewall [+],
tinywebgallery [+],
tar gz [+],
tar [+],
stage [+],
splunk [+],
socat [+],
shell commands [+],
shell command [+],
shell [+],
service vulnerability [+],
sanitization [+],
rename [+],
remote buffer overflow vulnerability [+],
reglookup [+],
registry files [+],
php script [+],
php fusion [+],
nestlex [+],
mds [+],
mandriva [+],
machine [+],
log [+],
linux [+],
liferay [+],
injection bug [+],
fckeditor [+],
exploitation [+],
disclosure issues [+],
david d. rude [+],
cyrus imap server [+],
cyrus imap [+],
cve [+],
command line utility [+],
command line argument [+],
cisco [+],
buffer overflow condition [+],
black hat [+],
bcfg [+],
based buffer overflow [+],
authentium [+],
asterisk [+],
arbitrary code execution [+],
arbitrary command [+],
injection [+],
zip file [+],
x86 linux [+],
x86 [+],
x.org [+],
x server [+],
x port [+],
x eap tls [+],
wlan [+],
win [+],
webapps [+],
web management [+],
web configurator [+],
wanna [+],
vsftpd [+],
video [+],
user interface [+],
user authentication [+],
unauthenticated [+],
u.s. [+],
type interface [+],
tsi [+],
tor event [+],
tor [+],
toolkit [+],
tgz [+],
systemv [+],
syntax errors [+],
stack buffer [+],
slides [+],
silc [+],
server [+],
security vulnerability [+],
section [+],
secret [+],
screen [+],
scanner service [+],
safer use [+],
retired [+],
resilient [+],
remote buffer overflow [+],
read [+],
rawcap [+],
raw sockets [+],
rap web [+],
publimark [+],
prepped [+],
port [+],
poe component irc [+],
poe [+],
physical memory [+],
permission [+],
pentagon [+],
peazip [+],
partions [+],
parameter [+],
oracle [+],
operating system [+],
openvas [+],
opencart [+],
open source software packages [+],
open source software [+],
o.s. command [+],
nvidia [+],
networks [+],
network sniffer [+],
name [+],
mysql command line [+],
mysql [+],
mozilla project [+],
mitel [+],
minbank [+],
military [+],
manager [+],
management suite [+],
management interface [+],
management [+],
mac addresses [+],
mac [+],
london [+],
local [+],
list [+],
links [+],
laser pointer [+],
laser command [+],
laser [+],
landesk [+],
knftpd [+],
killall [+],
kernel source [+],
kde [+],
jamie zawinski [+],
ivs [+],
ircd hybrid [+],
ircd [+],
invision power board [+],
internet explorer versions [+],
internet [+],
interface [+],
information disclosure vulnerability [+],
html [+],
htb [+],
how to [+],
hijacking [+],
hacking [+],
gitweb [+],
game [+],
fusion [+],
ftpgetter [+],
ftpdmin [+],
frustration [+],
free scan [+],
free open source software [+],
free [+],
foss [+],
format string [+],
focusedbeams [+],
external libraries [+],
explorer [+],
drive [+],
don [+],
directory traversal [+],
dennis brown tags [+],
dennis brown [+],
denial [+],
demand [+],
day [+],
daniel paluska [+],
cryptography [+],
crisis [+],
completeftp [+],
commands execution [+],
command parameter [+],
command line tool [+],
command line interface [+],
command line client [+],
command chief [+],
command c [+],
command bunker [+],
chief suggests [+],
centreon [+],
carnegie mellon university [+],
bugtraq [+],
botnet [+],
bench [+],
becomes [+],
awc [+],
authors [+],
attacker [+],
aruba networks [+],
aruba [+],
arduino [+],
apache 2 [+],
adminstrator [+],
activex control buffer overflow [+],
Wireless [+],
Support [+],
Newbie [+],
General [+],
Area [+],
remote [+],
exploits [+],
command execution [+],
denial of service [+],
wordlist,
wep,
usb,
thanks in advance,
symantec products,
startx,
script code,
quot,
question,
perl,
passwordlist,
mon,
img,
hybserv,
gui,
git,
facebook,
essid,
dual booting,
download,
core command,
command line,
command cat,
cat command,
cat,
broadcom 802,
broadcom,
bootable usb,
bash,
assembly,
alert management,
Programming
-
-
20:50
»
Packet Storm Security Exploits
This Metasploit module exploits an arbitrary command execution vulnerability in the in gitorious. Unvalidated input is send to the shell allowing command execution.
-
20:50
»
Packet Storm Security Recent Files
This Metasploit module exploits an arbitrary command execution vulnerability in the in gitorious. Unvalidated input is send to the shell allowing command execution.
-
20:50
»
Packet Storm Security Misc. Files
This Metasploit module exploits an arbitrary command execution vulnerability in the in gitorious. Unvalidated input is send to the shell allowing command execution.
-
-
8:01
»
Hack a Day
As one of the founders of Netscape and the Mozilla Project, [Jamie Zawinski] is no stranger to frustration elicited from syntax errors, terrible implementations, and things that don’t work even though they should. This familiarity of frustration is what makes [jwz]‘s command line controlled curtains so great; it’s rare to see someone so technically proficient freaking [...]
-
-
22:40
»
Packet Storm Security Exploits
This Metasploit module exploits an arbitrary root command execution vulnerability in the OP5 Monitor license.php. Ekelow has confirmed that OP5 Monitor versions 5.3.5, 5.4.0, 5.4.2, 5.5.0, 5.5.1 are vulnerable.
-
22:40
»
Packet Storm Security Recent Files
This Metasploit module exploits an arbitrary root command execution vulnerability in the OP5 Monitor license.php. Ekelow has confirmed that OP5 Monitor versions 5.3.5, 5.4.0, 5.4.2, 5.5.0, 5.5.1 are vulnerable.
-
22:40
»
Packet Storm Security Misc. Files
This Metasploit module exploits an arbitrary root command execution vulnerability in the OP5 Monitor license.php. Ekelow has confirmed that OP5 Monitor versions 5.3.5, 5.4.0, 5.4.2, 5.5.0, 5.5.1 are vulnerable.
-
22:39
»
Packet Storm Security Exploits
This Metasploit module exploits an arbitrary root command execution vulnerability in OP5 Monitor welcome. Ekelow AB has confirmed that OP5 Monitor versions 5.3.5, 5.4.0, 5.4.2, 5.5.0, 5.5.1 are vulnerable.
-
22:39
»
Packet Storm Security Recent Files
This Metasploit module exploits an arbitrary root command execution vulnerability in OP5 Monitor welcome. Ekelow AB has confirmed that OP5 Monitor versions 5.3.5, 5.4.0, 5.4.2, 5.5.0, 5.5.1 are vulnerable.
-
22:39
»
Packet Storm Security Misc. Files
This Metasploit module exploits an arbitrary root command execution vulnerability in OP5 Monitor welcome. Ekelow AB has confirmed that OP5 Monitor versions 5.3.5, 5.4.0, 5.4.2, 5.5.0, 5.5.1 are vulnerable.
-
-
16:02
»
Packet Storm Security Exploits
Apache Struts2 versions 2.2.1.1 and below suffer from an ExceptionDelegator remote command execution vulnerability. Versions 2.3.1 and below suffer from remote command execution vulnerabilities related to CookieInterceptor and DebuggingInterceptor. Versions 2.3.1 and below suffer from a file overwrite vulnerability in ParametersInterceptor.
-
16:02
»
Packet Storm Security Recent Files
Apache Struts2 versions 2.2.1.1 and below suffer from an ExceptionDelegator remote command execution vulnerability. Versions 2.3.1 and below suffer from remote command execution vulnerabilities related to CookieInterceptor and DebuggingInterceptor. Versions 2.3.1 and below suffer from a file overwrite vulnerability in ParametersInterceptor.
-
16:02
»
Packet Storm Security Misc. Files
Apache Struts2 versions 2.2.1.1 and below suffer from an ExceptionDelegator remote command execution vulnerability. Versions 2.3.1 and below suffer from remote command execution vulnerabilities related to CookieInterceptor and DebuggingInterceptor. Versions 2.3.1 and below suffer from a file overwrite vulnerability in ParametersInterceptor.
-
-
7:23
»
Packet Storm Security Tools
log2command is a PHP script that tracks IPs in log files and executes shell commands per each IP. log2command was created as a sort of reverse fail2ban or cheap VPN-firewall: a machine with a closed firewall can be told, by a foreign machine, to accept connections from a specific IP. log2command then keeps track of the webserver log file and watches for inactivity from the user's IP. After an amount of time another command is executed that can remove the user's IP from the firewall, closing down the machine again. The PHP script is a command-line program that can be run in the background.
-
7:23
»
Packet Storm Security Misc. Files
log2command is a PHP script that tracks IPs in log files and executes shell commands per each IP. log2command was created as a sort of reverse fail2ban or cheap VPN-firewall: a machine with a closed firewall can be told, by a foreign machine, to accept connections from a specific IP. log2command then keeps track of the webserver log file and watches for inactivity from the user's IP. After an amount of time another command is executed that can remove the user's IP from the firewall, closing down the machine again. The PHP script is a command-line program that can be run in the background.
-
-
13:37
»
Packet Storm Security Exploits
Proof of concept code that demonstrates a remote command execution in Plone versions 4.0 through 4.0.9, 4.1, 4.2 (a1 and a2) and Zope versions 2.12.x and 2.13.x.
-
13:37
»
Packet Storm Security Recent Files
Proof of concept code that demonstrates a remote command execution in Plone versions 4.0 through 4.0.9, 4.1, 4.2 (a1 and a2) and Zope versions 2.12.x and 2.13.x.
-
13:37
»
Packet Storm Security Misc. Files
Proof of concept code that demonstrates a remote command execution in Plone versions 4.0 through 4.0.9, 4.1, 4.2 (a1 and a2) and Zope versions 2.12.x and 2.13.x.
-
8:36
»
Packet Storm Security Recent Files
Sec-1 Labs performed a product security analysis of Splunk and discovered remote command execution as a privileged user, a directory traversal vulnerability, failure to protect itself from brute force attacks and information disclosure issues. Versions 4.2.2, 4.2.3 and 4.2.4 were tested. This archive contains an advisory and an exploit.
-
8:36
»
Packet Storm Security Misc. Files
Sec-1 Labs performed a product security analysis of Splunk and discovered remote command execution as a privileged user, a directory traversal vulnerability, failure to protect itself from brute force attacks and information disclosure issues. Versions 4.2.2, 4.2.3 and 4.2.4 were tested. This archive contains an advisory and an exploit.
-
-
8:32
»
Packet Storm Security Exploits
The 3.2 evaluation image of Restorepoint is vulnerable to a remote command execution vulnerability in the remote_support.cgi script prior to license activation.
-
8:32
»
Packet Storm Security Recent Files
The 3.2 evaluation image of Restorepoint is vulnerable to a remote command execution vulnerability in the remote_support.cgi script prior to license activation.
-
8:32
»
Packet Storm Security Misc. Files
The 3.2 evaluation image of Restorepoint is vulnerable to a remote command execution vulnerability in the remote_support.cgi script prior to license activation.
-
-
17:01
»
Packet Storm Security Recent Files
Cisco Nexus OS (NX-OS) suffers from command injection and sanitization issues. Nexus 7000, 5000, 4000, 3000, 2000, and 1000V are all affected. MDS and UCS are also affected. Local access is required.
-
17:01
»
Packet Storm Security Misc. Files
Cisco Nexus OS (NX-OS) suffers from command injection and sanitization issues. Nexus 7000, 5000, 4000, 3000, 2000, and 1000V are all affected. MDS and UCS are also affected. Local access is required.
-
19:04
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2011-149 - Multiple vulnerabilities has been discovered and corrected in cyrus-imapd. Stack-based buffer overflow in the split_wildmats function in nntpd.c in nntpd in Cyrus IMAP Server before 2.3.17 and 2.4.x before 2.4.11 allows remote attackers to execute arbitrary code via a crafted NNTP command. Secunia Research has discovered a vulnerability in Cyrus IMAPd, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused due to an error within the authentication mechanism of the NNTP server, which can be exploited to bypass the authentication process and execute commands intended for authenticated users by sending an AUTHINFO USER command without a following AUTHINFO PASS command.
-
19:04
»
Packet Storm Security Misc. Files
Mandriva Linux Security Advisory 2011-149 - Multiple vulnerabilities has been discovered and corrected in cyrus-imapd. Stack-based buffer overflow in the split_wildmats function in nntpd.c in nntpd in Cyrus IMAP Server before 2.3.17 and 2.4.x before 2.4.11 allows remote attackers to execute arbitrary code via a crafted NNTP command. Secunia Research has discovered a vulnerability in Cyrus IMAPd, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused due to an error within the authentication mechanism of the NNTP server, which can be exploited to bypass the authentication process and execute commands intended for authenticated users by sending an AUTHINFO USER command without a following AUTHINFO PASS command.
-
-
15:34
»
Packet Storm Security Exploits
This Metasploit module exploits an arbitrary command execution vulnerability in the Spreecommerce search. Unvalidated input is called via the Ruby send method allowing command execution.
-
15:34
»
Packet Storm Security Recent Files
This Metasploit module exploits an arbitrary command execution vulnerability in the Spreecommerce search. Unvalidated input is called via the Ruby send method allowing command execution.
-
15:34
»
Packet Storm Security Misc. Files
This Metasploit module exploits an arbitrary command execution vulnerability in the Spreecommerce search. Unvalidated input is called via the Ruby send method allowing command execution.
-
-
8:23
»
Packet Storm Security Advisories
Secunia Research has discovered a vulnerability in Cyrus IMAPd, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused by an error in the authentication mechanism of the NNTP server. This can be exploited to bypass the authentication process and execute commands intended for authenticated users only by sending an "AUTHINFO USER" command without a following "AUTHINFO PASS" command. Versions 2.4.10 and 2.4.11 are affected.
-
8:23
»
Packet Storm Security Recent Files
Secunia Research has discovered a vulnerability in Cyrus IMAPd, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused by an error in the authentication mechanism of the NNTP server. This can be exploited to bypass the authentication process and execute commands intended for authenticated users only by sending an "AUTHINFO USER" command without a following "AUTHINFO PASS" command. Versions 2.4.10 and 2.4.11 are affected.
-
8:23
»
Packet Storm Security Misc. Files
Secunia Research has discovered a vulnerability in Cyrus IMAPd, which can be exploited by malicious people to bypass certain security restrictions. The vulnerability is caused by an error in the authentication mechanism of the NNTP server. This can be exploited to bypass the authentication process and execute commands intended for authenticated users only by sending an "AUTHINFO USER" command without a following "AUTHINFO PASS" command. Versions 2.4.10 and 2.4.11 are affected.
-
-
12:13
»
Packet Storm Security Exploits
This Metasploit module allows remote attackers to execute arbitrary commands on the affected system by abusing a directory traversal attack when using the 'xf' command (execute function). An attacker can execute system() from msvcrt.dll to upload a backdoor and gain remote code execution.
-
12:13
»
Packet Storm Security Recent Files
This Metasploit module allows remote attackers to execute arbitrary commands on the affected system by abusing a directory traversal attack when using the 'xf' command (execute function). An attacker can execute system() from msvcrt.dll to upload a backdoor and gain remote code execution.
-
12:13
»
Packet Storm Security Misc. Files
This Metasploit module allows remote attackers to execute arbitrary commands on the affected system by abusing a directory traversal attack when using the 'xf' command (execute function). An attacker can execute system() from msvcrt.dll to upload a backdoor and gain remote code execution.
-
-
14:18
»
Packet Storm Security Exploits
This Metasploit module exploits a vulnerable resource in LifeSize Room versions 3.5.3 and 4.7.18 to inject OS commmands. LifeSize Room is an appliance and thus the environment is limited resulting in a small set of payload options.
-
14:18
»
Packet Storm Security Recent Files
This Metasploit module exploits a vulnerable resource in LifeSize Room versions 3.5.3 and 4.7.18 to inject OS commmands. LifeSize Room is an appliance and thus the environment is limited resulting in a small set of payload options.
-
14:18
»
Packet Storm Security Misc. Files
This Metasploit module exploits a vulnerable resource in LifeSize Room versions 3.5.3 and 4.7.18 to inject OS commmands. LifeSize Room is an appliance and thus the environment is limited resulting in a small set of payload options.
-
-
7:47
»
Packet Storm Security Exploits
This Metasploit module exploits a buffer overflow in the PASV command in Solarftp 2.1.2. You must have valid credentials to trigger this vulnerability and you only get one chance.
-
7:47
»
Packet Storm Security Recent Files
This Metasploit module exploits a buffer overflow in the PASV command in Solarftp 2.1.2. You must have valid credentials to trigger this vulnerability and you only get one chance.
-
7:47
»
Packet Storm Security Misc. Files
This Metasploit module exploits a buffer overflow in the PASV command in Solarftp 2.1.2. You must have valid credentials to trigger this vulnerability and you only get one chance.
-
-
14:25
»
Packet Storm Security Exploits
WD TV Live Hub versions 2.06.10 and below suffer from anonymous access, full path disclosure, authentication bypass, command execution, denial of service, and remote root shell vulnerabilities. PDF discussing the issues along with multiple exploits included.
-
14:25
»
Packet Storm Security Recent Files
WD TV Live Hub versions 2.06.10 and below suffer from anonymous access, full path disclosure, authentication bypass, command execution, denial of service, and remote root shell vulnerabilities. PDF discussing the issues along with multiple exploits included.
-
14:25
»
Packet Storm Security Misc. Files
WD TV Live Hub versions 2.06.10 and below suffer from anonymous access, full path disclosure, authentication bypass, command execution, denial of service, and remote root shell vulnerabilities. PDF discussing the issues along with multiple exploits included.
-
-
11:21
»
Packet Storm Security Advisories
It is possible to execute an arbitrary command with root privileges on phion netfence 4.0.x, phion netfence versions prior to 4.2.15 and NG Firewall versions prior to 5.0.2 boxes with activated external authentication scheme (i.e. Active Directory). An attacker with the knowledge of an admin's username is able to perform arbitrary shell commands during the ssh login procedure on the box. The knowledge of the admin's password is not required.
-
11:21
»
Packet Storm Security Recent Files
It is possible to execute an arbitrary command with root privileges on phion netfence 4.0.x, phion netfence versions prior to 4.2.15 and NG Firewall versions prior to 5.0.2 boxes with activated external authentication scheme (i.e. Active Directory). An attacker with the knowledge of an admin's username is able to perform arbitrary shell commands during the ssh login procedure on the box. The knowledge of the admin's password is not required.
-
11:21
»
Packet Storm Security Misc. Files
It is possible to execute an arbitrary command with root privileges on phion netfence 4.0.x, phion netfence versions prior to 4.2.15 and NG Firewall versions prior to 5.0.2 boxes with activated external authentication scheme (i.e. Active Directory). An attacker with the knowledge of an admin's username is able to perform arbitrary shell commands during the ssh login procedure on the box. The knowledge of the admin's password is not required.
-
-
8:05
»
Packet Storm Security Exploits
This Metasploit module exploits a vulnerability found on 7-Technologies IGSS 9. By supplying a long string of data to the 'Rename' (0x02), 'Delete' (0x03), or 'Add' (0x04) command, a buffer overflow condition occurs in IGSSdataServer.exe while handing an RMS report, which results arbitrary code execution under the context of the user. The attack is carried out in three stages. The first stage sends the final payload to IGSSdataServer.exe, which will remain in memory. The second stage sends the Add command so the process can find a valid ID for the Rename command. The last stage then triggers the vulnerability with the Rename command, and uses an egghunter to search for the shellcode that we sent in stage 1. The use of egghunter appears to be necessary due to the small buffer size, which cannot even contain our ROP chain and the final payload.
-
8:05
»
Packet Storm Security Recent Files
This Metasploit module exploits a vulnerability found on 7-Technologies IGSS 9. By supplying a long string of data to the 'Rename' (0x02), 'Delete' (0x03), or 'Add' (0x04) command, a buffer overflow condition occurs in IGSSdataServer.exe while handing an RMS report, which results arbitrary code execution under the context of the user. The attack is carried out in three stages. The first stage sends the final payload to IGSSdataServer.exe, which will remain in memory. The second stage sends the Add command so the process can find a valid ID for the Rename command. The last stage then triggers the vulnerability with the Rename command, and uses an egghunter to search for the shellcode that we sent in stage 1. The use of egghunter appears to be necessary due to the small buffer size, which cannot even contain our ROP chain and the final payload.
-
-
17:28
»
Packet Storm Security Exploits
IP Cameras such as TRENDnet, Digicom, and iPUX all share a firmware that suffers from undocumented user, command injection, hidden telnet service, and various other vulnerabilities.
-
17:28
»
Packet Storm Security Recent Files
IP Cameras such as TRENDnet, Digicom, and iPUX all share a firmware that suffers from undocumented user, command injection, hidden telnet service, and various other vulnerabilities.
-
17:28
»
Packet Storm Security Misc. Files
IP Cameras such as TRENDnet, Digicom, and iPUX all share a firmware that suffers from undocumented user, command injection, hidden telnet service, and various other vulnerabilities.
-
-
11:11
»
Packet Storm Security Exploits
WebSVN version 2.3.2 suffers from a remote command injection vulnerability due to an improper escaping of metacharacters in exec().
-
-
18:44
»
Packet Storm Security Exploits
This Metasploit module exploits an arbitrary command execution vulnerability in the AWStats Totals PHP script. AWStats Totals version v1.0 - v1.14 are vulnerable.
-
18:44
»
Packet Storm Security Recent Files
This Metasploit module exploits an arbitrary command execution vulnerability in the AWStats Totals PHP script. AWStats Totals version v1.0 - v1.14 are vulnerable.
-
18:44
»
Packet Storm Security Misc. Files
This Metasploit module exploits an arbitrary command execution vulnerability in the AWStats Totals PHP script. AWStats Totals version v1.0 - v1.14 are vulnerable.
-
-
17:34
»
Packet Storm Security Exploits
This Metasploit module exploits an arbitrary command execution vulnerability in the Spreecommerce API searchlogic. Unvalidated input is called via the Ruby send method allowing command execution.
-
17:34
»
Packet Storm Security Recent Files
This Metasploit module exploits an arbitrary command execution vulnerability in the Spreecommerce API searchlogic. Unvalidated input is called via the Ruby send method allowing command execution.
-
17:34
»
Packet Storm Security Misc. Files
This Metasploit module exploits an arbitrary command execution vulnerability in the Spreecommerce API searchlogic. Unvalidated input is called via the Ruby send method allowing command execution.
-
10:17
»
Packet Storm Security Exploits
phpAlbum.net version 0.4.1-14_fix06 suffers from cross site request forgery, cross site scripting, and remote command execution vulnerabilities.
-
10:17
»
Packet Storm Security Misc. Files
phpAlbum.net version 0.4.1-14_fix06 suffers from cross site request forgery, cross site scripting, and remote command execution vulnerabilities.
-
9:15
»
Packet Storm Security Exploits
Winamp version 5.6.1 remote command execution exploit that creates a malicious .pls file which downloads http://127.0.0.1:8888/ked/k.exe and executes it.
-
9:15
»
Packet Storm Security Recent Files
Winamp version 5.6.1 remote command execution exploit that creates a malicious .pls file which downloads http://127.0.0.1:8888/ked/k.exe and executes it.
-
9:15
»
Packet Storm Security Misc. Files
Winamp version 5.6.1 remote command execution exploit that creates a malicious .pls file which downloads http://127.0.0.1:8888/ked/k.exe and executes it.
-
-
14:04
»
Packet Storm Security Advisories
SmarterStats version 6.0 suffers from cross site scripting, denial of service, command execution, and directory traversal vulnerabilities.
-
-
11:01
»
Packet Storm Security Exploits
Joomla XCloner component remote command execution exploit. This component also suffers from information disclosure, local file inclusion, denial of service, and cross site scripting vulnerabilities.
-
11:01
»
Packet Storm Security Recent Files
Joomla XCloner component remote command execution exploit. This component also suffers from information disclosure, local file inclusion, denial of service, and cross site scripting vulnerabilities.
-
11:01
»
Packet Storm Security Misc. Files
Joomla XCloner component remote command execution exploit. This component also suffers from information disclosure, local file inclusion, denial of service, and cross site scripting vulnerabilities.
-
-
13:12
»
Packet Storm Security Advisories
Mandriva Linux Security Advisory 2011-018 - A patch for parse.c in sudo does not properly interpret a system group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command. NOTE: this vulnerability exists because of a CVE-2009-0034 regression. check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.
-
13:12
»
Packet Storm Security Recent Files
Mandriva Linux Security Advisory 2011-018 - A patch for parse.c in sudo does not properly interpret a system group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command. NOTE: this vulnerability exists because of a CVE-2009-0034 regression. check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.
-
13:12
»
Packet Storm Security Misc. Files
Mandriva Linux Security Advisory 2011-018 - A patch for parse.c in sudo does not properly interpret a system group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command. NOTE: this vulnerability exists because of a CVE-2009-0034 regression. check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.
-
-
9:11
»
Packet Storm Security Advisories
iDefense Security Advisory 01.10.11 - Remote exploitation of a command injection vulnerability in Hewlett-Packard Development Co. LP (HP)'s Network Node Manager could allow an attacker to execute arbitrary commands with the privileges of the affected service. The vulnerability exists within CGI scripts provided with the NNM HTTP Server. These scripts do not effectively sanitize a particular parameter. It is possible for an attacker to supply a parameter containing a specially crafted command line string. The command line string will be executed on the affected NNM HTTP Server.
-
9:11
»
Packet Storm Security Recent Files
iDefense Security Advisory 01.10.11 - Remote exploitation of a command injection vulnerability in Hewlett-Packard Development Co. LP (HP)'s Network Node Manager could allow an attacker to execute arbitrary commands with the privileges of the affected service. The vulnerability exists within CGI scripts provided with the NNM HTTP Server. These scripts do not effectively sanitize a particular parameter. It is possible for an attacker to supply a parameter containing a specially crafted command line string. The command line string will be executed on the affected NNM HTTP Server.
-
9:11
»
Packet Storm Security Misc. Files
iDefense Security Advisory 01.10.11 - Remote exploitation of a command injection vulnerability in Hewlett-Packard Development Co. LP (HP)'s Network Node Manager could allow an attacker to execute arbitrary commands with the privileges of the affected service. The vulnerability exists within CGI scripts provided with the NNM HTTP Server. These scripts do not effectively sanitize a particular parameter. It is possible for an attacker to supply a parameter containing a specially crafted command line string. The command line string will be executed on the affected NNM HTTP Server.
-
-
7:41
»
Packet Storm Security Exploits
This Metasploit module exploits an arbitrary command execution vulnerability in the Redmine repository controller. The flaw is triggered when a rev parameter is passed to the command line of the SCM tool without adequate filtering.
-
7:41
»
Packet Storm Security Recent Files
This Metasploit module exploits an arbitrary command execution vulnerability in the Redmine repository controller. The flaw is triggered when a rev parameter is passed to the command line of the SCM tool without adequate filtering.
-
7:41
»
Packet Storm Security Misc. Files
This Metasploit module exploits an arbitrary command execution vulnerability in the Redmine repository controller. The flaw is triggered when a rev parameter is passed to the command line of the SCM tool without adequate filtering.
-
-
18:11
»
SecuriTeam
A security vulnerability was discovered in LANDesk Management Suite.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
10:37
»
Packet Storm Security Exploits
Citrix Access Gateway Command Injection Enterprise Edition up to 9.2-49.8 and Standard and Advanced Editions prior to 5.0 suffer from a remote command injection vulnerability.
-
10:37
»
Packet Storm Security Recent Files
Citrix Access Gateway Command Injection Enterprise Edition up to 9.2-49.8 and Standard and Advanced Editions prior to 5.0 suffer from a remote command injection vulnerability.
-
10:37
»
Packet Storm Security Misc. Files
Citrix Access Gateway Command Injection Enterprise Edition up to 9.2-49.8 and Standard and Advanced Editions prior to 5.0 suffer from a remote command injection vulnerability.
-
6:22
»
Packet Storm Security Exploits
VMware Tools update suffers from an operating system command injection vulnerability.
-
-
16:13
»
Packet Storm Security Exploits
This Metasploit module exploits a malicious backdoor that was added to the ProFTPD download archive. This backdoor was present in the proftpd-1.3.3c.tar.[bz2|gz] archive between November 28th 2010 and 2nd December 2010.
-
16:13
»
Packet Storm Security Recent Files
This Metasploit module exploits a malicious backdoor that was added to the ProFTPD download archive. This backdoor was present in the proftpd-1.3.3c.tar.[bz2|gz] archive between November 28th 2010 and 2nd December 2010.
-
16:13
»
Packet Storm Security Misc. Files
This Metasploit module exploits a malicious backdoor that was added to the ProFTPD download archive. This backdoor was present in the proftpd-1.3.3c.tar.[bz2|gz] archive between November 28th 2010 and 2nd December 2010.
-
-
16:35
»
Packet Storm Security Advisories
Cisco Unified Videoconferencing system versions 3515,3522,3527,5230,3545,5110 and 5115 suffer from hard-coded credential, service misconfiguration, weak session ID, cookie storing of credentials, command injection and weak obfuscation vulnerabilities.
-
16:35
»
Packet Storm Security Recent Files
Cisco Unified Videoconferencing system versions 3515,3522,3527,5230,3545,5110 and 5115 suffer from hard-coded credential, service misconfiguration, weak session ID, cookie storing of credentials, command injection and weak obfuscation vulnerabilities.
-
16:35
»
Packet Storm Security Misc. Files
Cisco Unified Videoconferencing system versions 3515,3522,3527,5230,3545,5110 and 5115 suffer from hard-coded credential, service misconfiguration, weak session ID, cookie storing of credentials, command injection and weak obfuscation vulnerabilities.
-
-
1:01
»
Packet Storm Security Tools
Publimark is a command line tool to secretly embed text in an audio file. Like cryptography, it uses a pair of keys: the public one can be shared, whereas the private one must be kept secret. Anybody can send a steganographic message, but only the private key owner will be able read it. Marked audio files are still playable.
-
-
12:29
»
Hack a Day
[Keba] not only asked Answeres.HackaDay.com, but also sent us an email as follows. “Can you make a basic guide to designing a good Command Line User Interface?” Wouldn’t you know the luck, I’m currently working on a Command Line type interface for a project of mine. While after the jump I’ll be walking through my [...]
-
-
14:29
»
SecuriTeam
A Buffer Overflow Vulnerability was discovered in an ActiveX component that belongs to the Authentium Command On Demand Online scanner service.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
10:05
»
Hack a Day
[Daniel Paluska] is getting away from the point-and-click by editing videos from the command line. Using the free open source software packages FFmpeg, Imagemagick, and Sox he produces new clips from multiple videos with effects like overlaying, slicing, and assigning each video to a different quadrant. The last option would be useful for displaying different [...]
-
-
3:18
»
SecDocs
Authors:
David D. Rude Tags:
Metasploit exploiting Event:
Black Hat DC 2010 Abstract: Command injection vulnerabilities have always been a neglected vulnerability class when it comes to exploitation. Many researchers simply view command injection bugs as a direct interface with a shell. While this is true, much more complex tasks can be achieved rather than just executing commands. The purpose of this talk is to discuss the advanced techniques to exploit command injection bugs to leverage more out of these types of vulnerabilities than just a shell. The techniques covered in this talk will show examples of taking a command injection bug and turning it into full native payload execution.
-
3:18
»
SecDocs
Authors:
David D. Rude Tags:
Metasploit exploiting Event:
Black Hat DC 2010 Abstract: Command injection vulnerabilities have always been a neglected vulnerability class when it comes to exploitation. Many researchers simply view command injection bugs as a direct interface with a shell. While this is true, much more complex tasks can be achieved rather than just executing commands. The purpose of this talk is to discuss the advanced techniques to exploit command injection bugs to leverage more out of these types of vulnerabilities than just a shell. The techniques covered in this talk will show examples of taking a command injection bug and turning it into full native payload execution.
-
-
11:00
»
Hack a Day
[Eliji Hayashi's] project for a class at Carnegie Mellon University is absolutely delightful! It is a game he calls Laser Command because a laser pointer is used as the gaming controller. An 8×8 LED matrix serves as the display, but is also used as an 8×8 light sensor, much the same way as the LED [...]
-
9:05
»
remote-exploit & backtrack
hey guys, last night i tried to to try chntpw in backtrack 4 pre final when i wanna do the following step i must first mount my drive so i did so but it say to me permission denied.i also tryed to go to start>start menue>then to storge media then i reload it then i can see my partions ,i tryed to enter were windows is installed and a box poped up and telled me an error and told me to try command to mount it.i type it it's code:mount -t ntfs-3g /dev/sda1.............(i don't remmber all the command) and then it's says permission denied....i also entered the command code : df
it shows the drive and mounted on what i saw my windows partion and mounted in /media/sda1
i tryed to do the chntpw -i ...........................the mounted drive and were is the SAM file located it also says permission denied
i locked users in both f8 safe mode (adminstrator) and my other user i wanna rest them using this tool to see how it work help plz
-
-
17:58
»
remote-exploit & backtrack
I finally get Backtrack installed, backtrack show up centered in the middle and doesn't use the whole screen. when I was running ubunto 9.10 didn't experience this problem. I've tried to install the nvidia-glx-71 drivers and got this error nvidia-glx-71: depends nvidia-71-kernel-source but it is not going to be installed. settingolution
changed the resilution settings but the picture got smaller, therefore it is set to what should be the correct setting.
Then I tried the fixvesa command, that didn't work. I also used the xconfig command which also didn't work.
any other ideas, suggestions on to fix this would be very helpful.
Thanks
-
-
7:04
»
remote-exploit & backtrack
hi all
i tried to crack a friends WEP encrypted AP with airocrack-ng (command line , if any GUI exist plz let me know)
i use this command :
sudo airmon-ng start wlan0 5
sudo airodump-ng --ivs -w Erix -c 5 wlan0
sudo aireplay-ng -5 -b 00:00:00:00:00:00 -h 00:00:00:00:00:00 wlan0
sudo aireplay-ng -1 0 -e Torkanet -a 00:00:00:00:00:00 -h00:00:00:00:00:00 wlan0
(MAC addresses is diffrent but Ap is Torkanet :D & it is on channel 5)
this is when no clients present!
and this commands when we use a clients :
sudo airmon-ng start wlan0 5
sudo airodump-ng --ivs -w Erix -c 5 wlan0
sudo aireplay-ng -0 10 -a 00:00:00:00:00:00 -c 00:00:00:00:00:00 wlan0
sudo aireplay-ng -3 -b 00:00:00:00:00:00 -h 00:00:00:00:00:00 wlan0
the problem is when aircrack-ng gots packegs it said ".....still nothing tring another package" it done this over and over and over till i ran low on physical memory :D!! what should i do?
is our network secured enough?
and other silly question is :D on this command :
sudo aireplay-ng -5 -b 00:00:00:00:00:00 -h 00:00:00:00:00:00 wlan0
which MAC address is mine and which is for Ap? (the same question goes for -3 option!!)
by the way sry for my weak english!!:D
-
-
17:00
»
Packet Storm Security Recent Files
This Metasploit module exploits a command injection vulnerability in PeaZip. All versions prior to 2.6.2 are suspected vulnerable. Testing was conducted with version 2.6.1 on Windows. In order for the command to be executed, an attacker must convince someone to open a specially crafted zip file with PeaZip, and access the specially file via double-clicking it. By doing so, an attacker can execute arbitrary commands as the victim user.
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
(2 unread)XSSed
Sophos security news
Penetration Testing
BackTrack Linux Forums
Threatpost
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Wirevolution