phpDEV5 - Remote Default Insecure Users

2005-03-11T00:00:00
ID EXPLOITPACK:1013762F8B4AA58F90B2C7B310E49F02
Type exploitpack
Reporter Ali7
Modified 2005-03-11T00:00:00

Description

phpDEV5 - Remote Default Insecure Users

                                        
                                            ------------------------------------------------------------------------
# PHPDev5 Remote Insecure Default Users & Passwords vuln.
# By : Ali7
# e-mail : ali7@hotmail.co.uk
# date : 09-03-2k5
# greetz : all my friends ; AlkaeN ; s4a.cc boyz ;)
 
 
>Target : PHPDev 5
>URL : www.firepages.com.au - http://sourceforge.net/projects/phpdev5/
>Type : PHP/Apache/MySQL Server..
 
>>Details : i found that PHPDev creates 4 default users with "blank passwords"..
@% : no privs.
@localhost : full privs. & full control on all Databases..
root@% : full privs. & full control on all Databases..
root@localhost : full privs. & full control on all Databases..
 
>>Exploitin'9 : The Attacker may have the the full control on any database using PhpMyAdmin or any other database management software..
 
An Advanced Attacker may use the the privs. to execute malicuos SQL queries or download PHP-shells .....etc.
 
>> Fixing :
** Change the Blank Passwords.. :\
 
That's All ..)) Sorry 4 my bad English $:

# milw0rm.com [2005-03-11]