|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Any working exploits for phpBB 2.0.14? |
|
Posted: Tue May 10, 2005 5:22 am |
|
|
jearthree |
Regular user |
|
|
Joined: May 10, 2005 |
Posts: 6 |
|
|
|
|
|
|
|
Are there any working exploits for phpBB 2.0.14 which allow you to gain admin access to the site?
Thanks for your replies! |
|
|
|
|
Posted: Tue May 10, 2005 9:31 am |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
You will have to wait 3 days for the new bbcode exploit. |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
Posted: Tue May 10, 2005 9:00 pm |
|
|
jearthree |
Regular user |
|
|
Joined: May 10, 2005 |
Posts: 6 |
|
|
|
|
|
|
|
Ah cool, I wasn't sure what was possible with that, thanks for your help! |
|
|
|
|
Posted: Wed May 11, 2005 11:07 am |
|
|
lone_wolf |
Regular user |
|
|
Joined: Feb 20, 2005 |
Posts: 9 |
|
|
|
|
|
|
|
Five days counting from may the seventh - tommorow is the day |
|
|
|
|
Posted: Wed May 11, 2005 5:55 pm |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
Seems to be many script kiddies lurking around....... |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
Posted: Thu May 12, 2005 9:54 am |
|
|
lone_wolf |
Regular user |
|
|
Joined: Feb 20, 2005 |
Posts: 9 |
|
|
|
|
|
|
|
Kiddie yourself. Never heard for your exploits |
|
|
|
|
Posted: Thu May 12, 2005 10:22 am |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
Wait are you calling me a script kiddie?
Well you are wrong.
First off I have only ever used exploits twice online. (grudges)
And secondly I dont use real life sploits. I work out proof of concepts and mod them to the way I need.
I do my testing localy.
And I hardly even test exploits localy any more. |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
Posted: Thu May 12, 2005 11:36 am |
|
|
lone_wolf |
Regular user |
|
|
Joined: Feb 20, 2005 |
Posts: 9 |
|
|
|
|
|
|
|
And why for the god sake do you need to modify exploits of some bug for some BB? And test them localy?! Don't sound logical to me...
Sounds to me you're just another script kiddie who thinks by making new scripts for other peoples exploits he's real hacker like them |
|
|
|
|
|
|
|
|
Posted: Thu May 12, 2005 12:05 pm |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
You can think that if you like but its not the truth.
The Hacker is some who makes scripts and is good at it. A lot of people get mixed up between Hacking and Exploiting.
Modifying proof of concepts is a way of learning how to write secure code because to make an exploit you first need to look at the source and determin where the hole is and how you can use it to your advantage. Thus making you learn from other people's mistakes also teaching you to review your own code and see where you may have gone wrong.
So in a way it is teaching you how to be a hacker. Hacker = someone who writes secure scripts and is good at it. |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
|
|
|
|
Posted: Thu May 12, 2005 12:29 pm |
|
|
lone_wolf |
Regular user |
|
|
Joined: Feb 20, 2005 |
Posts: 9 |
|
|
|
|
|
|
|
Ok, I'll agree with you on that and that's exactly the reason why am here - to watch & LEARN. Not script kiddie
You know, you're funny guy Shai |
|
|
|
|
Posted: Thu May 12, 2005 12:41 pm |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
Well I wasnt calling you guys script kiddies directly I was just stating there are heaps around. Do you use Ares or Warez P2Ps? They are full of script kiddies who want to know how to "hack". And there are sites way worse than this with posts being made about exploits all the time. |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
|
Re: Any working exploits for phpBB 2.0.14? |
|
Posted: Thu May 12, 2005 1:20 pm |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
Cmn people, relax all, take some prozac, couple of beers or coffee and just let's calm down
Why blame each other, why fight with each other, let's just share information and let's improve our skills through this. You know, no one is perfect, if someone is thinking that "i know all about this topic i ever wanted", then he's allready stagnating, he is allready about staing behind newcomers. Everyone should learn through all the life, every hacker or hacker-wannabe starts form being scriptkiddie, then will try to modify scripts, then will make scripts and find holes by himself and finally, some of them will be real gurus, discovering whole new areas in IT security and insecurity. In this forum is subsection "Newbies corner" - it is exactly meant for total beginners and n00b scrptkidd0s.
Peace |
|
|
|
|
|
|
|
|
Posted: Thu May 12, 2005 1:27 pm |
|
|
lone_wolf |
Regular user |
|
|
Joined: Feb 20, 2005 |
Posts: 9 |
|
|
|
|
|
|
|
>Do you use Ares or Warez P2Ps?
never heard of it. i read only bugtraq mailing list and infos on personal sites of authors of original exploits
i found this site when waraxe released his exploit for sql injection bug in privmsg last year |
|
|
|
|
|
Re: Any working exploits for phpBB 2.0.14? |
|
Posted: Thu May 12, 2005 1:28 pm |
|
|
lone_wolf |
Regular user |
|
|
Joined: Feb 20, 2005 |
Posts: 9 |
|
|
|
|
|
|
|
waraxe wrote: |
Peace |
Good point waraxe! |
|
|
|
|
Posted: Thu May 12, 2005 1:31 pm |
|
|
shai-tan |
Valuable expert |
|
|
Joined: Feb 22, 2005 |
Posts: 477 |
|
|
|
|
|
|
|
Thats how I found this site too same advisory too. He had done it wrong on purpose. Only 25 Characters of the users MD5 came out of it.
Warez and Ares are P2Ps they have chat rooms on them for heaps of different subjects there are tonnes of "hacking" ones on it. |
|
_________________ Shai-tan
?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds |
|
|
|
www.waraxe.us Forum Index -> PhpBB
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 2
Goto page 1, 2Next
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|