|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 111
Members: 0
Total: 111
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Exploit for 2.3.0 ? |
|
Posted: Mon Feb 09, 2009 7:46 pm |
|
|
lowbird |
Regular user |
|
|
Joined: Feb 06, 2009 |
Posts: 5 |
|
|
|
|
|
|
|
Hello together
Do anyone have a working exploit for IP 2.3.0 ?
would be greate |
|
|
|
|
Posted: Tue Feb 10, 2009 1:07 am |
|
|
ingh1pped |
Advanced user |
|
|
Joined: Dec 13, 2008 |
Posts: 88 |
|
|
|
|
|
|
|
have you jus try the waraxe exploit for the 2.3.5 version?
http://www.milw0rm.com/exploits/6507
if you have a site with a 2.3.0 version probably it's not patched and bugged in the same file.. |
|
|
|
|
Posted: Tue Feb 10, 2009 2:50 pm |
|
|
lowbird |
Regular user |
|
|
Joined: Feb 06, 2009 |
Posts: 5 |
|
|
|
|
|
|
|
Well i tryed the 2.3.5 exploit on an other forum and it worked.
now i got this:
Hash: e5109df27c2d826bce16767848366cfe
sAlt: K#$$3
how can i calculate the real MD5 - Hash now ? Or what can i do next ? |
|
|
|
|
Posted: Tue Feb 10, 2009 6:17 pm |
|
|
ingh1pped |
Advanced user |
|
|
Joined: Dec 13, 2008 |
Posts: 88 |
|
|
|
|
|
|
|
Quote: | how can i calculate the real MD5 - Hash now |
well... you now hav real md5 + salt. you have not to search "real md5"
jus hope that someone here can crack this md5 + salt for vbulletin or try by your self with PasswordPro , choosing the right version of crypt fot vbulletin
i' don't remember if it's md5($md5 + $salt) or md5(($md5)+ $salt) ..
someone other can tell you the right.
use Password Pro |
|
|
|
|
Posted: Tue Feb 10, 2009 7:06 pm |
|
|
pexli |
Valuable expert |
|
|
Joined: May 24, 2007 |
Posts: 665 |
Location: Bulgaria |
|
|
|
|
|
|
ingh1pped this is IPB not vBulletin
md5(md5($salt).md5($pass)) [PHP] |
|
|
|
|
Posted: Tue Feb 10, 2009 9:53 pm |
|
|
ingh1pped |
Advanced user |
|
|
Joined: Dec 13, 2008 |
Posts: 88 |
|
|
|
|
|
|
|
sorry pexli.!!
my mistake.. i mean ipb..
the exploit i before suggest is right
so lowbird use PasswordPro with this settings md5(md5($salt).md5($pass)) to try crack password |
|
|
|
|
Posted: Wed Feb 11, 2009 9:47 am |
|
|
lowbird |
Regular user |
|
|
Joined: Feb 06, 2009 |
Posts: 5 |
|
|
|
|
|
|
|
ok thank you
ill try it with Passwordpro, but i first need a big worldlist i think ?
Where can i get nice ones? |
|
|
|
|
Posted: Wed Feb 11, 2009 6:15 pm |
|
|
ingh1pped |
Advanced user |
|
|
Joined: Dec 13, 2008 |
Posts: 88 |
|
|
|
|
|
|
|
|
|
|
|
www.waraxe.us Forum Index -> Invision Power Board
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|