|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 57
Members: 0
Total: 57
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
PHProxy Local Access Vulnerability |
|
Posted: Fri Apr 11, 2008 10:38 am |
|
|
Oilik |
Active user |
|
|
Joined: Mar 05, 2008 |
Posts: 35 |
|
|
|
|
|
|
|
With this, you can get local access to what ever is on the server with the right credentials, a downside is, it has to be HTTP based. Can be good if someone has a VNC server on their local server that has an HTTP client that they don't want being seen by the outside world. I've also used this to get in a router or two. Ok, it's like this:
-1: Find a PHProxy site.
-2: Go here and find the local IP of what you want to view (I like to do 192.168.1.1 because that's what most routers are on, which comes out to be: http://0xc0a80101 ), for testing and as a PoC, go find out what 127.0.0.1 is in the IP2Hex converter (it's http://0x7f000001 ) and enter that. You'll see the same exact page as if you were viewing the direct IP, which means: yay, you're local on their machine, and you can view local pages that an outsider can't(although you can see that page from the outside, but you get my point.).
-3: Enter that string in the URL field on PHProxy.
-4: Say hello to local access!
Bad:
You can only view HTTP pages.
You can only enter IPs to convert them to hex, but then again, who cares? If you have the server name of the server, just enter http://server_name in the field, and you get access that way too.
Good:
Access routers, crack router passwords, view local VNC servers[with HTTP support], possibilities are endless.
I may post a video later.
Found by: Oilik
|
|
|
|
|
|
|
|
|
Posted: Fri Apr 11, 2008 8:05 pm |
|
|
holyservant |
Regular user |
|
|
Joined: Mar 20, 2008 |
Posts: 16 |
|
|
|
|
|
|
|
wow... thats actually pretty smart
good job man |
|
|
|
|
Posted: Fri Apr 11, 2008 8:18 pm |
|
|
Oilik |
Active user |
|
|
Joined: Mar 05, 2008 |
Posts: 35 |
|
|
|
|
|
|
|
holyservant wrote: | wow... thats actually pretty smart
good job man | Thanks |
|
|
|
|
www.waraxe.us Forum Index -> All other security holes
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|