Cerberus Security Team

5 exploits Active since Mar 2000
CVE-2000-0169 EXPLOITDB text WORKING POC
Oracle Application Server - Remote Command Execution via Malformed URL Parameter
Batch files in the Oracle web listener ows-bin directory allow remote attackers to execute commands via a malformed URL that includes '?&'.
CVE-2000-0396 EXPLOITDB text WORKING POC
Carello - Unauthenticated Arbitrary File Read via add.exe File Duplication
The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.
CVE-2000-0429 EXPLOITDB text WRITEUP
Cart32 3.0 and earlier - Remote Code Execution via Backdoor Password
A backdoor password in Cart32 3.0 and earlier allows remote attackers to execute arbitrary commands.
CVE-2000-0457 EXPLOITDB text WRITEUP
Internet Information Server 4.0-5.0 - Unauthenticated Arbitrary File Read via .HTR Extension with Encoded Spaces
ISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and appending a large number of encoded spaces (%20) and terminated with a .htr extension, aka the ".HTR File Fragment Reading" or "File Fragment Reading via .HTR" vulnerability.
CVE-2000-0180 EXPLOITDB text WRITEUP
Sojourn Search Engine - Info Disclosure
Sojourn search engine allows remote attackers to read arbitrary files via a .. (dot dot) attack.