Waraxe IT Security Portal

nuker · Active user

hi,

im trying to execute this exploit

http://marc.info/?l=bugtraq&m=122002759605015&w=2

but im not so familiar with cmd so i cant get right the execution syntax. In cmd i just enter the path to the exploit like this c:\users\blabla\exploit.php so a dialog appears and says something like this:

Attacks

-attack <int_choice> <params> [options]

1 - PHP code execution

-url IPB url with ending slash

-uname targeted username

so by that i figured that you have to give those parameters somehow but i cant find out how, i tried

c:\users\blabla\exploit.php -attack <1> <-url someboard.com -uname admin>

but didnt work. Any suggestions please??

Thank you.

lenny · Valuable expert

Did it give you any error messages in response?

nuker · Active user

hi

i get no errors, when i execute it i just get this screen:

Attacks

-attack <int_choice> <params> [options]

1 - PHP code execution

-url IPB url with ending slash

uname targeted username

-uid OR the targeted user id (def: 1)

etc.

and then it exits but nothing happens. So its like if you need to indicate the parameters above mentioned somewhere or maybe you need to modify the exploit code and indicate the URL of the board you want to hack and all that but i cant figure out where in the code i should change that. If you know how to use this exploit i would appreciate any hint you could give me.

Thank you.

gibbocool · Advanced user

You specify the arguments on the command line when u start the script.

eg: php exploit.php -attack 1 -url www.site.com/forum/ -uid 1

Pretty straight forward.

nuker · Active user

Somehow i had a typo in the commands. Now i could execute it. Thank you. Unfortunately the exploit seems to be out of date, i get a message that says ereg is deprecated in line 507 so its a useless script. Also, it doesnt seem to get the ACP path which is what im looking for.

Thank you anyway.