MP3Mystic目录遍历漏洞-安全小百科

MP3Mystic目录遍历漏洞

漏洞ID	1106336	漏洞类型	路径遍历
发布时间	2001-05-07	更新时间	2005-05-02
CVE编号	CVE-2001-0574	CNNVD-ID	CNNVD-200108-078
漏洞平台	Windows	CVSS评分	5.0

|漏洞来源

https://www.exploit-db.com/exploits/20826
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200108-078

|漏洞详情

1.04b3版本之前的MP3Mystic存在目录遍历漏洞。远程攻击者可以借助URL中的’..’（点点）下载任意文件。

|漏洞EXP

source: http://www.securityfocus.com/bid/2699/info

A vulnerability exists in Jason Rahaim's MP3Mystic Server which allows a remote user to traverse the directories of a target host. This may lead to the disclosure of file and directory contents. Arbitrary directories can be accessed through the inclusion of double dot '../' sequences when submitting a URL. 

www.example.com/../scandisk.log

|参考资料

来源:XF
名称:mp3mystic-dot-directory-traversal(6504)
链接:http://xforce.iss.net/static/6504.php
来源:BID
名称:2699
链接:http://www.securityfocus.com/bid/2699
来源:mp3mystic.com
链接:http://mp3mystic.com/mp3mystic/news.phtml
来源:BUGTRAQ
名称:20010507AdvisoryforMP3Mystic
链接:http://archives.neohapsis.com/archives/bugtraq/2001-05/0046.html
来源:OSVDB
名称:1815
链接:http://www.osvdb.org/1815

相关推荐: Solaris/SPARC – Bind (6789/TCP) Shell (/bin/sh) Shellcode (228 bytes)

Solaris/SPARC – Bind (6789/TCP) Shell (/bin/sh) Shellcode (228 bytes) 漏洞ID 1054638 漏洞类型发布时间 2004-09-26 更新时间 2004-09-26 CVE编号 N/A …

文章版权归作者所有，未经允许请勿转载。

THE END