 |
Post AtHZOjTdZUnuyoWccK by [email protected] |
 |
More posts by [email protected] |
|
Post #AtGegq427oS1Eb2gIy by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Command intention via email subject in GNU Mailman. lol. lmao. It's interes… |
|
|
|
Post #AtGegqBTg8PDbgWcuO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w so many people want severity to be objective, but notwithstanding decades… |
|
|
|
Post #AtGegqH9L2wVtHB9kW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@falcon Yeah. I appreciate that people keep trying to add more nuance to the sc… |
|
|
|
Post #AtGgRoqWZRXJ1Pgnr6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w Why is there a shell trying to parse the Subject line in the first place? |
|
|
|
Post #AtGh1RBo0GVw4ocyZc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@SpaceLifeForm Exactly. And it's in such an obvious attacker-accessible inp… |
|
|
|
Post #AtGh1RHpdrKoNVRmy0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w And some wonder why I do not use email. |
|
|
|
Post #AtHLSAFP66SDW8bryC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w Are these specific to cPanel/WHM customizations? Can't reproduce eith… |
|
|
|
Post #AtHZOjTdZUnuyoWccK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w @SpaceLifeForm oh wow, that is a blast from the past & it can't b… |
|
|
|
Post #AtHZOjcV2XtRQIfhQm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@malte @SpaceLifeForm No idea. If the PoC is legit, and I assume it is given th… |
|
|
|
Post #AtHduw6GZfqHDGClfM by [email protected] |
|
0 likes, 1 repeats |
|
|
|
I can't stop laughing at MITRE giving this AC:H when the PoC says the explo… |
|
|
|
Post #AtHduwCeBwwjX3Brc0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Well if that command injection wasn't enough for you, how about a nice sev:… |
|
|
|
Post #AtU6Uxc1Yg1wwQXpOC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@redsakana I assume so. It says "as bundled with" so I expect there&#… |
|
|
|
Post #AtU6UxiPAx8PGDWvKq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0wYeah, the code in stock private.py looks pretty unlikely to provide a path… |
|
|
|
Post #AtU6UxomnEEra0W1HU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@redsakana That's kind of what I figured. If I get time later I'll try … |
|
|
|
Post #AtU6UxuoQp3jshKpfs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w I don't really see any avenues for the kind of shell execution that t… |
|
|
|
Post #AtU6Uy1Y1mRmDaUDAm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@redsakana I'm really curious what cPanel is doing with its implementation … |
|
|
|
Post #AtU6Uy7ZfNGeWHJ1ZA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w Probably no other way to find out than to dig up a copy of cPanel. The Su… |
|
|
|
Post #AtU6V9c6wBEKAAg4Bs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@redsakana That last idea seems pretty plausible. |
