AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability

vendor:

Article Manager Pro

by:

ZoRLu

7,5

CVSS

HIGH

Remote Shell Upload

434

CWE

Product Name: Article Manager Pro

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: Yes

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability

A vulnerability exists in AlstraSoft Article Manager Pro which allows an attacker to upload a malicious shell to the vulnerable server. The attacker can then use the shell to execute arbitrary commands on the server. The vulnerability is due to insufficient validation of the uploaded file type, allowing an attacker to upload a malicious shell with a double extension such as .php.jpg. The malicious shell can then be accessed by the attacker via the URL http://www.example.com/article/images/author_pics/[id].php.

Mitigation:

The vendor has released a patch to address this vulnerability. Users should upgrade to the latest version of AlstraSoft Article Manager Pro.

Source

Exploit-DB raw data:

[~] AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability
[~]
[~] ----------------------------------------------------------
[~] Author: ZoRLu
[~]
[~] Date: 02.06.2009
[~]
[~] Home: yildirimordulari.com / z0rlu.blogspot.com
[~]
[~] msn: trt-turk@hotmail.com
[~] 
[~] N0T: KPSS ananI ...
[~]
[~] N0T: if you wanna learn hack you must be register to my site yildirimordulari.com
[~] -----------------------------------------------------------

add this code you shell head:

exapmle:

GIF89a;
<?

...
...
...

?>

save you shell.php

after go here:

yildirimordulari.com/article/register.php

after select your shell.php

done register after login to site edit your profile

and you look your shell name

yildirimordulari.com/article/images/author_pics/[id].php

example demo:

http://www.blizsoft.com/article/register.php

user: salla

pass: 123a123

shell:

http://www.blizsoft.com/article/images/author_pics/41.php


[~]----------------------------------------------------------------------
[~] Greetz tO: str0ke & DrLy0N & w0cker & Cyber-Zone & Stack & ThE g0bL!N & AlpHaNiX  and all friends
[~]
[~] yildirimordulari.com / dafgamers.com
[~]
[~]----------------------------------------------------------------------

# milw0rm.com [2009-06-02]