If the /install/ directory was not removed, it is possible for an unauthenticated attacker to run the "install_4.php" script, which will create the configuration file for the installation. This allows the attacker to inject PHP code into the configuration file and execute it.
87ed86a0d1878037791e43a36f9d7694This Metasploit module exploits a remote code execution vulnerability in Exodus Wallet. A vulnerability in the ElectronJS Framework protocol handler can be used to get arbitrary command execution if the user clicks on a specially crafted URL.
0e247465a8b7beba07ea27e4cb0057e7This Metasploit module exploits a stack-based buffer overflow vulnerability in Disk Savvy Enterprise version 10.4.18, caused by improper bounds checking of the request sent to the built-in server. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
bfeae1744c34384854bd5326b5010471This Metasploit module exploits a stack-based buffer overflow vulnerability in the CloudMe Sync version 1.10.9 client application. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
41dab942f2886640903e2e9e54f5e2e7Disk Pulse Enterprise version 10.4.18 suffers from an import command buffer overflow vulnerability.
306d6473f1da65b39b55c3e2eb726093Disk Savvy Enterprise version 10.4.18 suffers from a buffer overflow vulnerability.
d0a5403b18b4719bbfcc5ed6a346f8faThis Metasploit module exploits a buffer overflow in Dup Scout Enterprise version 10.4.16 by using the import command option to import a specially crafted xml file.
3c239cd0ae1f2f80ccc8d0c47c009097This Metasploit module exploits a buffer overflow in Sync Breeze Enterprise 9.5.16 by using the import command option to import a specially crafted xml file.
395d219c09a1ba573c0f9f59e1e68bb8This Metasploit module exploits a buffer overflow in the LabF nfsAxe 3.7 FTP Client allowing remote code execution.
8d30c79823a88f61fd7afa9d88d0562eThis Metasploit module exploits a stack-based buffer overflow vulnerability against Ayukov NFTPD FTP Client 2.0 and earlier. By responding with a long string of data for the SYST request, it is possible to cause a denial-of-service condition on the FTP client, or arbitrary remote code execution under the context of the user if successfully exploited.
586e39e9c2691a57d4f738d9226a1a4fThis Metasploit module exploits a stack-based buffer overflow vulnerability in the web interface of VX Search Enterprise v9.5.12, caused by improper bounds checking of the request path in HTTP GET requests sent to the built-in web server. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
d253f613c50ab1d748ea4f581c269908This Metasploit module exploits a stack-based buffer overflow vulnerability in the web interface of Sync Breeze Enterprise v9.4.28, caused by improper bounds checking of the request path in HTTP GET requests sent to the built-in web server. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
f3556ba8acc91d809655f9aaf8017697This Metasploit module exploits a stack-based buffer overflow vulnerability in the web interface of Dup Scout Enterprise v9.5.14, caused by improper bounds checking of the request path in HTTP GET requests sent to the built-in web server. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
56aad3822c1d8c83c5c90f04a016891eThis Metasploit module exploits a stack-based buffer overflow vulnerability in the web interface of Disk Sorter Enterprise version 9.5.12, caused by improper bounds checking of the request path in HTTP GET requests sent to the built-in web server. This Metasploit module has been tested successfully on Windows 7 SP1 x86.
d0efa18e6955b9b943952b0d59267c45Sync Breeze Enterprise version 9.5.16 SEH GET buffer overflow exploit.
88f1966befbe41ef7031cb40bdaa369cSync Breeze Enterprise version 9.5.16 suffers from an import command buffer overflow vulnerability.
5f4395fb19ca83dd0ee6077c73645de1Disk Sorter Enterprise version 9.5.12 GET buffer overflow SEH exploit.
c9815b57b711c26282745fc67efc9b35Various routers such as the AirLive ARM-204, AirLive WT-2000ARM, D-Link DVA-G3170i/PT, Edimax AR-7084ga, Huawei, Aolynk DR814Q, DrayTek Vigor2700 series, DrayTek Vigor2920 series, Thomson TG784, and ZyXEL P-660RU-T1v3 re-embed the password in a hidden field of the web management interface.
6483b608abfe2168ccd6c2a0478a7914
© 2018 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed