Showing 1 - 3 of 3

CVE-2009-2936

Status Candidate

Overview

** DISPUTED ** The Command Line Interface (aka Server CLI or administration interface) in the master process in the reverse proxy server in Varnish before 2.1.0 does not require authentication for commands received through a TCP port, which allows remote attackers to (1) execute arbitrary code via a vcl.inline directive that provides a VCL configuration file containing inline C code; (2) change the ownership of the master process via param.set, stop, and start directives; (3) read the initial line of an arbitrary file via a vcl.load directive; or (4) conduct cross-site request forgery (CSRF) attacks that leverage a victim's location on a trusted network and improper input validation of directives. NOTE: the vendor disputes this report, saying that it is "fundamentally misguided and pointless."

Related Files

Varnish Cache CLI Login Utility: Posted Aug 31, 2024; Authored by h00die, aushack | Site metasploit.com; This Metasploit module attempts to login to the Varnish Cache (varnishd) CLI instance using a bruteforce list of passwords.; tags | exploit; advisories | CVE-2009-2936; SHA-256 | 8e3762c08b09fcbd9c54cc1f7bc026ff226ffde59424745f6b3b8190cd4dfb6c; Download | Favorite | View

Varnish Cache CLI File Read: Posted Aug 31, 2024; Authored by patrick, h00die | Site metasploit.com; This Metasploit module attempts to read the first line of a file by abusing the error message when compiling a file with vcl.load.; tags | exploit; advisories | CVE-2009-2936; SHA-256 | 686a425c40952290c7d61f15e0ffd8773aab2cc417d5a6790a52366d7dd49413; Download | Favorite | View

Varnish Cache CLI Interface Remote Code Execution: Posted Dec 20, 2014; Authored by Patrick Webster | Site metasploit.com; This Metasploit module attempts to login to the Varnish Cache (varnishd) CLI instance using a bruteforce list of passwords. This Metasploit module will also attempt to read the /etc/shadow root password hash if a valid password is found. It is possible to execute code as root with a valid password, however this is not yet implemented in this module.; tags | exploit, root; advisories | CVE-1999-0502, CVE-2009-2936, OSVDB-67670; SHA-256 | fe293ec94b3dfa7e3027ffc1c7be75b60a403e4ba9e56d55b6442ac2180a0939; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 268 files
indoushka 153 files
Jay Turla 150 files
Ubuntu 66 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
Gentoo 33 files
H D Moore 31 files
Debian 29 files

File Archives

Systems

AIX (429)
Apple (2,104)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,116)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (880)
iOS (387)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,039)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,710)
Slackware (941)
Solaris (1,614)
SUSE (1,444)
Ubuntu (9,802)
UNIX (9,448)
UnixWare (187)
Windows (6,762)
Other

CVE-2009-2936

Overview

Related Files

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems