Jim Becher

3 exploits Active since Oct 2003
CVE-2019-1000018 WRITEUP HIGH WRITEUP
rssh 2.3.4 - Command Injection
rssh version 2.3.4 contains a CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in allowscp permission that can result in Local command execution. This attack appear to be exploitable via An authorized SSH user with the allowscp permission.
CVSS 7.8
CVE-2021-33216 EXPLOITDB CRITICAL text WRITEUP
CommScope Ruckus IoT Controller <1.7.1.0 - Privilege Escalation
An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. An Undocumented Backdoor exists, allowing shell access via a developer account.
CVSS 9.8
CVE-2003-0757 EXPLOITDB c WORKING POC
Check Point FireWall-1 <4.1 - Info Disclosure
Check Point FireWall-1 4.0 and 4.1 before SP5 allows remote attackers to obtain the IP addresses of internal interfaces via certain SecuRemote requests to TCP ports 256 or 264, which leaks the IP addresses in a reply packet.