3.6.1 vulnerability

From: S . f . Stover (attica_at_stackheap.org)
Date: 10/11/03

  • Next message: Faheem Mitha: "problems with rsh authentication (for use with mpich)"
    Date: Sat, 11 Oct 2003 08:03:06 -0400
    To: secureshell@securityfocus.com
    
    
    

    Has anyone seen working exploit code (poc or otherwise) for the 3.6.1
    vulnerability? I've been looking around and can't find anything.

    -- 
    aka Dolph Longhorn
    attica@stackheap.org
    GPG Key ID: 0xF8F859D0
    http://pgp.mit.edu:11371/pks/lookup?search=0xF8F859D0&op=index
    "There is no such thing as right and wrong, there's just popular opinion."
    -Jeffrey Goines
    
    



  • Next message: Faheem Mitha: "problems with rsh authentication (for use with mpich)"

    Relevant Pages

    • CA ARCserve D2D r15 Web Service Apache Axis2 World Accessible Servlet Code Execution Vulnerability
      ... Code Execution Vulnerability Poc ... carries a world accessible Apache Axis2 Web Service with default credentials. ...
      (Bugtraq)
    • Multiple vulnerabilities in osCmax
      ... Vulnerability Type: ... This can be exploited to execute arbitrary HTML and script code in user's browser session in context of affected website. ... The following PoC demonstrates the vulnerability: ... Successful exploitation of this vulnerability requires that "register_globals" is enabled. ...
      (Bugtraq)
    • Multiple SQL Injection vulnerabilities in ClipBucket
      ... Vendor Notification: November 7, 2012 ... High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in ClipBucket, which can be exploited to perform SQL Injection attacks. ... The following PoC codes demonstrate the vulnerabilities. ... The third PoC code demonstrates vulnerability exploitation by blind SQL injection technique: ...
      (Bugtraq)
    • Multiple SQL Injection vulnerabilities in ClipBucket
      ... Vendor Notification: November 7, 2012 ... High-Tech Bridge Security Research Lab discovered multiple vulnerabilities in ClipBucket, which can be exploited to perform SQL Injection attacks. ... The following PoC codes demonstrate the vulnerabilities. ... The third PoC code demonstrates vulnerability exploitation by blind SQL injection technique: ...
      (Bugtraq)
    • CPANEL File Manager XSS Vulnerability
      ... Cpanel File Manager XSS Vulnerability ... that poc exploit works for both file manager application. ...
      (Bugtraq)