CVE-2010-4094
published 2010-10-26CVE-2010-4094: The Tomcat server in IBM Rational Quality Manager and Rational Test Lab Manager has a default password for the ADMIN account, which makes it easier for remote…
PriorityP260medium5CVSS 2.0
AVNACLAuNCNIPAN
EXPLOIT
EPSS
64.50%
99.1th percentile
The Tomcat server in IBM Rational Quality Manager and Rational Test Lab Manager has a default password for the ADMIN account, which makes it easier for remote attackers to execute arbitrary code by leveraging access to the manager role. NOTE: this might overlap CVE-2009-3548.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Apache Tomcat Manager - Application Deployer (Authenticated) Code Execution (Metasploit)
exploitdb·2010-12-14
CVE-2010-4094 Apache Tomcat Manager - Application Deployer (Authenticated) Code Execution (Metasploit)
Apache Tomcat Manager - Application Deployer (Authenticated) Code Execution (Metasploit)
---
##
# $Id: tomcat_mgr_deploy.rb 11330 2010-12-14 17:26:44Z egypt $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 [ /Apache.*(Coyote|Tomcat)/ ] }
include Msf::Exploit::Remote::HttpClient
include Msf::Exploit::EXE
def initialize(info = {})
super(update_info(info,
'Name' => 'Apache Tomcat Manager Application Deployer Authenticated Code Execution',
'Description' => %q{
This module can be used to execute a payload on Apache Tomcat servers that
have an
Exploit-DB
Flock Browser 3.0.0 - Malformed Bookmark HTML Injection
exploitdb·2010-08-19
CVE-2010-3202 Flock Browser 3.0.0 - Malformed Bookmark HTML Injection
Flock Browser 3.0.0 - Malformed Bookmark HTML Injection
---
source: https://www.securityfocus.com/bid/42556/info
Flock Browser is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input.
Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.
Versions prior to Flock 3.0.0.4094 are vulnerable.
Bookmarks Menú Marcadores ">
Metasploit
Apache Tomcat Manager Application Deployer Authenticated Code Execution
metasploit
Apache Tomcat Manager Application Deployer Authenticated Code Execution
Apache Tomcat Manager Application Deployer Authenticated Code Execution
This module can be used to execute a payload on Apache Tomcat servers that have an exposed "manager" application. The payload is uploaded as a WAR archive containing a jsp application using a PUT request. The manager application can also be abused using /manager/html/upload, but that method is not implemented in this module. NOTE: The compatible payload sets vary based on the selected target. For example, you must select the Windows target to use native Windows payloads.
Metasploit
Apache Tomcat Manager Authenticated Upload Code Execution
metasploit
Apache Tomcat Manager Authenticated Upload Code Execution
Apache Tomcat Manager Authenticated Upload Code Execution
This module can be used to execute a payload on Apache Tomcat servers that have an exposed "manager" application. The payload is uploaded as a WAR archive containing a jsp application using a POST request against the /manager/html/upload component. NOTE: The compatible payload sets vary based on the selected target. For example, you must select the Windows target to use native Windows payloads.
Metasploit
Tomcat Application Manager Login Utility
metasploit
Tomcat Application Manager Login Utility
Tomcat Application Manager Login Utility
This module simply attempts to login to a Tomcat Application Manager instance using a specific user/pass.
No writeups or analysis indexed.
http://download4.boulder.ibm.com/sar/CMA/RAA/013m6/0/UpdateLog.txthttp://osvdb.org/69008http://secunia.com/advisories/41784http://securitytracker.com/id?1024601http://www.securityfocus.com/bid/44172http://www.vupen.com/english/advisories/2010/2732http://www.zerodayinitiative.com/advisories/ZDI-10-214/http://download4.boulder.ibm.com/sar/CMA/RAA/013m6/0/UpdateLog.txthttp://osvdb.org/69008http://secunia.com/advisories/41784http://securitytracker.com/id?1024601http://www.securityfocus.com/bid/44172http://www.vupen.com/english/advisories/2010/2732http://www.zerodayinitiative.com/advisories/ZDI-10-214/
2010-10-26
Published