Cerberus Security Team

5 exploits Active since Mar 2000
CVE-2000-0169 EXPLOITDB text WORKING POC
Oracle - Command Injection
Batch files in the Oracle web listener ows-bin directory allow remote attackers to execute commands via a malformed URL that includes '?&'.
CVE-2000-0396 EXPLOITDB text WORKING POC
Carello - Info Disclosure
The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.
CVE-2000-0429 EXPLOITDB text WRITEUP
Cart32 <3.0 - Command Injection
A backdoor password in Cart32 3.0 and earlier allows remote attackers to execute arbitrary commands.
CVE-2000-0457 EXPLOITDB text WRITEUP
IIS 4.0-5.0 - Info Disclosure
ISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and appending a large number of encoded spaces (%20) and terminated with a .htr extension, aka the ".HTR File Fragment Reading" or "File Fragment Reading via .HTR" vulnerability.
CVE-2000-0180 EXPLOITDB text WRITEUP
Sojourn Search Engine - Info Disclosure
Sojourn search engine allows remote attackers to read arbitrary files via a .. (dot dot) attack.