header-logo
Suggest Exploit
vendor:
Ourspace
by:
Breaker_unit & Don
7.5
CVSS
HIGH
Remote Code Execution
CWE
Product Name: Ourspace
Affected Version From: 2.0.9
Affected Version To: 2.0.9
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

Ourspace 2.0.9 Exploit

The vulnerability exists in the /cgi-bin/ourspace/newswire/uploadmedia.cgi script of Ourspace 2.0.9. An attacker can exploit this vulnerability to execute arbitrary code on the server. The exploit can be found on milw0rm.com.

Mitigation:

Upgrade to a patched version of Ourspace.
Source

Exploit-DB raw data:

++++++++++++++++++++++++++++++++++++
| Discovered by Breaker_unit & Don |
| Ourspace 2.0.9|
script info: http://www.codedworld.com/download/our-space/26931.html

Exploit: /cgi-bin/ourspace/newswire/uploadmedia.cgi
dork: inurl:"/cgi-bin/ourspace/

Greetz to:
Balcan Crew Members
h4cky0u.org
and my friends: str0ke & kw3rLn
+++++++++++++++++++++++++++++++++++++++

# milw0rm.com [2007-08-30]

Navigation

Suggest Exploit

Services By CQR