CVE-2005-1073
published 2005-05-02CVE-2005-1073: Directory traversal vulnerability in index.php for RadScripts RadBids Gold 2 allows remote attackers to read arbitrary files via the read parameter.
PriorityP432medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
8.03%
94.1th percentile
Directory traversal vulnerability in index.php for RadScripts RadBids Gold 2 allows remote attackers to read arbitrary files via the read parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| radscripts | radbids | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Snort 2.4.0 < 2.4.3 - Back Orifice Pre-Preprocessor Remote (Metasploit)
exploitdb·2005-10-18
CVE-2005-3252 Snort 2.4.0 < 2.4.3 - Back Orifice Pre-Preprocessor Remote (Metasploit)
Snort 2.4.0 'Snort Back Orifice Pre-Preprocessor Remote Exploit',
'Description' => %q{
This module exploits a stack overflow in the Back Orifice pre-processor module
included with Snort versions 2.4.0, 2.4.1, 2.4.2, and 2.4.3. This vulnerability could
be used to completely compromise a Snort sensor, and would typically gain an attacker
full root or administrative privileges.
},
'Author' => 'KaiJern Lau ',
'License' => BSD_LICENSE,
'Version' => '$Revision$',
'References' =>
[
['CVE', '2005-3252'],
['OSVDB', '20034'],
['BID', '15131'],
['URL','http://xforce.iss.net/xforce/alerts/id/207'] ,
],
'Payload' =>
{
'Space' => 1073, #ret : 1069
'BadChars' => "\x00",
},
'Targets' =>
[
# Target 0: Debian 3.1 Sarge
[
'Debian 3.1 Sarge',
{
'Platform' => 'linux',
'Ret' => 0xbffff350
}
],
],
'DefaultTarget
Exploit-DB
RadScripts RadBids Gold 2.0 - 'index.php?read' Traversal Arbitrary File Access
exploitdb·2005-04-09
CVE-2005-1073 RadScripts RadBids Gold 2.0 - 'index.php?read' Traversal Arbitrary File Access
RadScripts RadBids Gold 2.0 - 'index.php?read' Traversal Arbitrary File Access
---
source: https://www.securityfocus.com/bid/13080/info
RadBids Gold is reported prone to multiple vulnerabilities. These issues include arbitrary file disclosure, cross-site scripting, and SQL injection.
The following specific vulnerabilities were identified:
A remote attacker can disclose arbitrary files. Information gathered through this issue may allow the attacker to carry out other attacks against an affected computer.
The application is affected by a SQL injection vulnerability. Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.
Multiple cross-si
No writeups or analysis indexed.
http://secunia.com/advisories/14906http://www.digitalparadox.org/advisories/rga.txthttp://www.osvdb.org/15428http://www.securityfocus.com/archive/1/395527http://www.securityfocus.com/bid/13080https://exchange.xforce.ibmcloud.com/vulnerabilities/20038http://secunia.com/advisories/14906http://www.digitalparadox.org/advisories/rga.txthttp://www.osvdb.org/15428http://www.securityfocus.com/archive/1/395527http://www.securityfocus.com/bid/13080https://exchange.xforce.ibmcloud.com/vulnerabilities/20038
2005-05-02
Published