This Metasploit module attempts to login to the Varnish Cache (varnishd) CLI instance using a bruteforce list of passwords. This Metasploit module will also attempt to read the /etc/shadow root password hash if a valid password is found. It is possible to execute code as root with a valid password, however this is not yet implemented in this module.
Monthly Archives: December 2014
miniBB 3.1 Blind SQL Injection
miniBB version 3.1 suffers from a remote blind SQL injection vulnerability.
Cacti Superlinks 1.4-2 Code Execution / LFI / SQL Injection
Cacti Superlinks version 1.4-2 suffers from code execution via local file inclusion, and remote SQL injection vulnerabilities.
NetIQ eDirectory NDS iMonitor 8.8 SP8 / 8.8 SP7 XSS / Memory Disclosure
NetIQ eDirectory NDS iMonitor versions 8.8 SP8 and 8.8 SP7 suffer from a cross site scripting vulnerability.
Mobilis MobiConnect 3G ZDServer 1.0.1.2 Privilege Escalation
Mobilis MobiConnect 3G ZDServer version 1.0.1.2 suffers from a privilege escalation vulnerability.
Codiad 2.4.3 Cross Site Scripting / Local File Inclusion
Codiad version 2.4.3 suffers from cross site scripting and local file inclusion vulnerabilities.
ProjectSend r561 Ultimate Cross Site Scripting / Path Disclosure
ProjectSend version r561 Ultimate suffers from cross site scripting and path disclosure vulnerabilities.
Piwigo 2.7.2 Cross Site Scripting / SQL Injection
Piwigo version 2.7.2 suffers from cross site scripting and remote SQL injection vulnerabilities.
CVE-2014-3410
The syslog-management subsystem in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to obtain an administrator password by waiting for an administrator to copy a file, and then (1) sniffing the network for a syslog message or (2) reading a syslog message in a file on a syslog server, aka Bug IDs CSCuq22357 and CSCur41860.
CVE-2014-8007
Cisco Prime Infrastructure allows remote authenticated users to read device-discovery passwords by examining the HTML source code of the Quick Discovery options page, aka Bug ID CSCum00019.