No, this is utterly stupid. See https://twitter.com/shadowcat_mst/status/1113970594360561664 … Greenwolf have utterly beclowned themselves with this CVE and brought the CVE system into disrepute by incompetence. No props at all for https://medium.com/greenwolf-security/authenticated-arbitrary-command-execution-on-postgresql-9-3-latest-cd18945914d5 …
-
-
-
Sorry - what?
- Još 2 druga odgovora
Novi razgovor -
-
-
Yep nice job
@Jacob_Wilkin! -
I spent like twenty minutes trying to find his twitter when I read the post!! Jacob next time throw it in your post so people can tag you. This is really solid research, thanks for sharing.
- Još 2 druga odgovora
Novi razgovor -
-
-
https://github.com/attackercan/psql-mass-rce … The technique is very old, but msf is pretty good
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
I think he should file another couple of CVEs: an RCE for OpenSSH that allows running privileged commands when using a privileged user (root); and a Privilege Escalation for sudo that allows a user that matches the config to scale privileges.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
-
-
damn xp_cmdshell lives on
- Još 1 odgovor
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.