Exploit Sambar Server 4.1 Beta - Admin Access

Exploiter

Хакер
34,599
0
18 Дек 2022
EDB-ID
20570
Проверка EDB
  1. Пройдено
Автор
MICHIEL DE WEERD
Тип уязвимости
REMOTE
Платформа
CGI
CVE
null
Дата публикации
1998-06-10
Код:
source: https://www.securityfocus.com/bid/2255/info

'dumpenv.pl' is a utility that will display environment information on which the server resides, this information could include the server software version being used, directory settings and path information.

The default authentication credentials for the administrator account in a Sambar Server is Username: admin with the password left blank. Once a remote user has gained knowledge of the path to log into the admin account, it is possible for the user to login to the server via an http request. This unauthorized access is gained providing that the default settings have not been changed.

Successful exploitation of this vulnerability could lead to complete compromise of the host 

The following will display environment information:

http://target/cgi-bin/dumpenv.pl

The following is an example of the path to login as admin:

http://target/session/adminlogin?RCpage=/sysadmin/index.stm
 
Источник
www.exploit-db.com

Похожие темы