###########################################
deluxeFTP plain text passwords disclosure
vendor url:http://www.deluxeftp.com/
vendor notified: yes exploit avaible: yes
advisore url:http://lostmon.blogspot.com/2005/04/
deluxeftp-plain-text-passwords.html
OSVDB ID: 15421
Secunia:SA14923
###########################################
DeluxeFTP contains a flaw that may lead to an unauthorized user
name and password exposure. It is possible to gain access to plain
text user name and password of the ftp sites configured when the
program writes its configuration in 'sites.xml' file, which may lead
to a loss of confidentiality.
##########
version:
##########
DeluxeFTP 6.0.1 afected.
DeluxeFTP Professional 7.0.1 beta afected
###########
solution:
###########
Currently, there are no known upgrades, patches, or workarounds
available to correct this issue.
###########
timeline:
###########
discovered: 09/04/2005
vendor notified: 10/04/2005
disclosure date: 11/04/2005
##########
exploit:
##########
c:\program files\DeluxeFTP\sites.xml
c:\program files\DeluxeFTP Professional\sites.xml
and in this file we look what wen we look for the sites what
we have configured we look this information:
<SITE name="Test">
<ADDRESS>PLAINTEXT_FTP_HOST</ADDRESS>
<PORT>21</PORT>
<PASVMODE>0</PASVMODE>
<LOGIN>PLAINTEXT_USERNAME</LOGIN>
<PASSWORD>PLAINTEX_PASSWORD</PASSWORD>
<REMOTEPATH />
########
thanks
########
thnx to estrella she is always in my mind
thnx to all who support me day at day
--
atentamente:
Lostmon (lostmon@gmail.com)
Web-Blog: http://lostmon.blogspot.com/
Data Mangle of: http://www.osvdb.org
La curiosidad es lo que hace mover la mente....
Pieces about me.
Sunday, April 10, 2005
After of almost a year from my first appearance, or my first advisory,
today I want to leave something about my interests my restlessness.
I am a normal boy of 35 years of age, interested in the informatics
world in the branch of the security that is evident; I never have
money to pay for an academic face to me formation and never
even let’s persecute that dream,the future, the technologic.
with many efforts y time gain a part of my goal, to know to
whatever on different systems, and since then I do what others did
not do with me, quick support in channels of IRC aid, resolutions
of problems, contribute articles to publications and webs, I distribute
the conclusions and analysis of some of the advisories that I publish
and attempt to help on the basis of my knowledge the developers
as far as possible.
That it is what interests to me? It interests to me to continue with my
formation and it interests to me to continue evolving towards a
greater and better knowledge of the systems, I like to specialize in
security in Web applications . this year after of a few sacrifices,
finally can may to make the course that always I wanted to do; but
that by lack of time and resources I could not... I hope to obtain I title
corresponding to.http://www.uoc.edu/masters/
if somebody wishes to esponsorice me or to contribute
to my formation I am "open" to ideas.
Despite this it has been a good year, and thanks to this called
invention Internet, and the support and supported by many
friends and organizations,I see much but there of which at first
few years ago I imagines,and that gives desire me to continue
ahead and to offer the best thing of my.
Thnx to estrella she I plant in my the seed of curiosity and night after night gave support me.
Thnx to all security list what they investigate and publish my investigations.
Thnx to all vendors who believed in me
Thnx to OSVDB for deposited confidence in my
Thnx to http://www.ayuda-internet.net for they support
for a few times a go, thnx to all team.
Thnx to icaro and Rapt[] from http://www.hispanew.com for they support and its friendship
Thnx to [XK],pusa.p4nd0r4,and pupas,RotteW ,Brink,IsMaX,^Maat^ and all Dismarking Team and much others they are a good friends,
Thnx to Jose luis form >http://www.vsantivirus.com they make a very good work for the comunity !!!
atentamente
Lostmon(lostmon@gmail.com)
--
La curiosidad es lo que hace mover la mente
today I want to leave something about my interests my restlessness.
I am a normal boy of 35 years of age, interested in the informatics
world in the branch of the security that is evident; I never have
money to pay for an academic face to me formation and never
even let’s persecute that dream,the future, the technologic.
with many efforts y time gain a part of my goal, to know to
whatever on different systems, and since then I do what others did
not do with me, quick support in channels of IRC aid, resolutions
of problems, contribute articles to publications and webs, I distribute
the conclusions and analysis of some of the advisories that I publish
and attempt to help on the basis of my knowledge the developers
as far as possible.
That it is what interests to me? It interests to me to continue with my
formation and it interests to me to continue evolving towards a
greater and better knowledge of the systems, I like to specialize in
security in Web applications . this year after of a few sacrifices,
finally can may to make the course that always I wanted to do; but
that by lack of time and resources I could not... I hope to obtain I title
corresponding to.http://www.uoc.edu/masters/
if somebody wishes to esponsorice me or to contribute
to my formation I am "open" to ideas.
Despite this it has been a good year, and thanks to this called
invention Internet, and the support and supported by many
friends and organizations,I see much but there of which at first
few years ago I imagines,and that gives desire me to continue
ahead and to offer the best thing of my.
Thnx to estrella she I plant in my the seed of curiosity and night after night gave support me.
Thnx to all security list what they investigate and publish my investigations.
Thnx to all vendors who believed in me
Thnx to OSVDB for deposited confidence in my
Thnx to http://www.ayuda-internet.net for they support
for a few times a go, thnx to all team.
Thnx to icaro and Rapt[] from http://www.hispanew.com for they support and its friendship
Thnx to [XK],pusa.p4nd0r4,and pupas,RotteW ,Brink,IsMaX,^Maat^ and all Dismarking Team and much others they are a good friends,
Thnx to Jose luis form >http://www.vsantivirus.com they make a very good work for the comunity !!!
atentamente
Lostmon(lostmon@gmail.com)
--
La curiosidad es lo que hace mover la mente
PayProCart Profindcode phpinfo disclosure
Saturday, April 09, 2005
###################################################
PayProcart 3.x phpinfo disclosure
vendor url:http://www.profitcode.net/products/payprocart.html
vendor notified: yes exploit avaible: yes
original advisore:http://lostmon.blogspot.com/2005/04/
payprocart-profindcode-phpinfo.html
OSVDB ID:15422
Secunia: SA14832
###################################################
PayProcart installs a filed called phpinfos.php in the webroot folder
by default, this file calls phpinfo()
This reveals very intimate configuration data of the server running php:
http://[target]/path_to_store/phpinfos.php
solution:
delete this file or edit to established the correct access
thnx to estrella she is always in my mind
thnx to all who support me day at day
thnx to osvdb.org
--
atentamente:
Lostmon (lostmon@gmail.com)
Web-Blog: http://lostmon.blogspot.com/
Data Mangle of: http://www.osvdb.org
La curiosidad es lo que hace mover la mente....
PayProcart 3.x phpinfo disclosure
vendor url:http://www.profitcode.net/products/payprocart.html
vendor notified: yes exploit avaible: yes
original advisore:http://lostmon.blogspot.com/2005/04/
payprocart-profindcode-phpinfo.html
OSVDB ID:15422
Secunia: SA14832
###################################################
PayProcart installs a filed called phpinfos.php in the webroot folder
by default, this file calls phpinfo()
This reveals very intimate configuration data of the server running php:
http://[target]/path_to_store/phpinfos.php
solution:
delete this file or edit to established the correct access
thnx to estrella she is always in my mind
thnx to all who support me day at day
thnx to osvdb.org
--
atentamente:
Lostmon (lostmon@gmail.com)
Web-Blog: http://lostmon.blogspot.com/
Data Mangle of: http://www.osvdb.org
La curiosidad es lo que hace mover la mente....
3com adsl 11g cradsl72 router config.bin information disclosure
Saturday, April 02, 2005
########################################
3com adsl 11g 3cradsl72 router config.bin information disclosure.
vendor url:http: www.//3com.com/
vendor notified: yes exploit avaible : yes
advisore url:http://lostmon.blogspot.com/2005/04/
3com-adsl-11g-cradsl72-router.html
dicovered by Lostmon & vIOsOnE
last update: 2005/04/02 update solution.
OSVDB ID:15181
Secunia: SA13942
########################################
A few time ago some flaws are discovered on 3com wireles cradsl72 router:
A new flaw was discovered by me and vIOsOnE A remote user can obtain
al details about configuration of the devide and all passwords (
Internet provider and router password ) without authentication.
firmware versions affected :
1.02b afected
1.05 afected
1.10 not afected
solution:
Upgrade to version 1.10 or higher, as it has been reported to fix this vulnerability.
An upgrade is required as there are no known workarounds.
exploit :
1 open your router with this address http://[target]app_sta.stm
we look the pass of the Internet provider.
2- copy and paste this URL http://[target]/cgi-bin/config.bin
and we obtain the configurations file , inside are all details about
configuration including the pass of the device.
also if you like to bypass all authentication and don´t use
a web browser you can use wget tool and get this
wget http://xxx.xxx.xxx.xxx/cgi-bin/config.bin
and with wget we need only one url to exploting this issue
thnx to estrella to be my ligth
thnx to all who day by da suuport me
thnx to vIOsOnE he is with me and investigate ;)
--
atentamente:
Lostmon (lostmon@gmail.com)
Web-Blog: http://lostmon.blogspot.com/
Data mangler of: http://www.osvdb.org
La curiosidad es lo que hace mover la mente....
3com adsl 11g 3cradsl72 router config.bin information disclosure.
vendor url:http: www.//3com.com/
vendor notified: yes exploit avaible : yes
advisore url:http://lostmon.blogspot.com/2005/04/
3com-adsl-11g-cradsl72-router.html
dicovered by Lostmon & vIOsOnE
last update: 2005/04/02 update solution.
OSVDB ID:15181
Secunia: SA13942
########################################
A few time ago some flaws are discovered on 3com wireles cradsl72 router:
A new flaw was discovered by me and vIOsOnE A remote user can obtain
al details about configuration of the devide and all passwords (
Internet provider and router password ) without authentication.
firmware versions affected :
1.02b afected
1.05 afected
1.10 not afected
solution:
Upgrade to version 1.10 or higher, as it has been reported to fix this vulnerability.
An upgrade is required as there are no known workarounds.
exploit :
1 open your router with this address http://[target]app_sta.stm
we look the pass of the Internet provider.
2- copy and paste this URL http://[target]/cgi-bin/config.bin
and we obtain the configurations file , inside are all details about
configuration including the pass of the device.
also if you like to bypass all authentication and don´t use
a web browser you can use wget tool and get this
wget http://xxx.xxx.xxx.xxx/cgi-bin/config.bin
and with wget we need only one url to exploting this issue
thnx to estrella to be my ligth
thnx to all who day by da suuport me
thnx to vIOsOnE he is with me and investigate ;)
--
atentamente:
Lostmon (lostmon@gmail.com)
Web-Blog: http://lostmon.blogspot.com/
Data mangler of: http://www.osvdb.org
La curiosidad es lo que hace mover la mente....
Subscribe to:
Posts (Atom)