|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 108
Members: 0
Total: 108
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
admin session cookie exploit? |
|
Posted: Mon May 30, 2005 12:43 pm |
|
|
erila |
Regular user |
|
|
Joined: May 30, 2005 |
Posts: 8 |
|
|
|
|
|
|
|
Hi
I've been trying to get the exploit listed below to work:
http://cert.uni-stuttgart.de/archive/bugtraq/2005/03/msg00245.html
I downloaded the tool, and tried it on a 2.0.10 install, and a 2.0.11 also - the relevant text to substitute is there, but nothing happens when I do it.
Does anyone have any more information about it?
Thanks in advance. |
|
|
|
|
|
|
|
|
Posted: Tue May 31, 2005 2:33 pm |
|
|
y3dips |
Valuable expert |
|
|
Joined: Feb 25, 2005 |
Posts: 281 |
Location: Indonesia |
|
|
|
|
|
|
nothin wrong with the thread!
most of us in this forum got the sploits work !
1. use the right browser (i suggest u to use firefox) then allow the site to set the cookies .. fter that follow the order
open the browser , type the URL till full page opened , then close the browser, open the cookie.txt , then change the parameter; open browser then access the url again , look at the bottom , admin panel ? click it .. boom
2. cek the PHPBB , is it patched ? if its already patched so for POC u can delete one "=" then try it
hope it helps |
|
_________________ IO::y3dips->new(http://clog.ammar.web.id); |
|
|
|
www.waraxe.us Forum Index -> Newbies corner
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|