YABBSE path disclosure 2.0
 
Plugin ID184
Plugin nameYABBSE path disclosure
Plugin filenameYABBSE path disclosure.plugin
Plugin filesize3115 bytes
Plugin familyHTTP
Plugin created nameNico 'Triplex' Spicher
Plugin created emailTriplex at IT-Helpnet dot de
Plugin created webhttp://triplex.it-helpnet.de/
Plugin created companyhttp://www.it-helpnet.de/
Plugin created date2004/09/07
Plugin updated nameMarc Ruef
Plugin updated emailmarc dot ruef at computec dot ch
Plugin updated webhttp://www.computec.ch
Plugin updated companycomputec.ch
Plugin updated date2004/11/14
Plugin version2.0
Plugin changelogMade some slight modifications in version 1.1. Corrected the plugin structure and added the accuracy values in 1.2. Improved the pattern matching and introduced the plugin changelog in 2.0
Plugin protocoltcp
Plugin port80
Plugin procedure exploitopen|send GET /Sources/Admin.php HTTP/1.0\n\n|sleep|close|pattern_exists HTTP/#.# ### *Fatal error: Call to undefined function:*
Plugin exploit accuracy98
Plugin commentThis plugin was written with the ATK-Plugin-Creator [http://triplex.it-helpnet.de].
Bug published namey3dips
Bug published emaily3dips at echo dot or dot id
Bug published webhttp://y3dips.echo.or.id
Bug published date2004/08/25
Bug advisoryhttp://echo.or.id/adv/adv05-y3dips-2004.txt
Bug affectedYABBSE all versions
Bug not affectedOther solutions
Bug vulnerability classConfiguration
Bug descriptionScript in Sources/Admin.php files are not protected against direct access. A remote user can access the file to cause the system to display an error message that indicates the installation path. The resulting error message will disclose potentially sensitive installation path information to the remote attacker.
Bug solutionDisable this suite or upgrade to the latest version and limit unwanted connections and communications with firewalling. Change the default directory of the application to make automated scans harder.
Bug fixing timeApprox. 30 minutes
Bug exploit availabilityYes
Bug remoteYes
Bug localYes
Bug severityLow
Bug popularity3
Bug simplicity8
Bug impact4
Bug risk4
Source LiteratureHacking Intern - Angriffe, Strategien, Abwehr, Marc Ruef, Marko Rogge, Uwe Velten and Wolfram Gieseke, November 1, 2002, Data Becker, Düsseldorf, ISBN 381582284X
Source Misc.http://www.computec.ch

This file was generated by the Attack Tool Kit (ATK), the open-sourced security scanner and exploiting framework.