View and vote on the article here: ASP Webboard Exploits
ASP Webboard Exploits| Category | | | Summary | | I discovered an asp webboard exploit. Please read this article if you run an asp web board in order of your security. |
| | Body | ASP INCLUDE FILES
When .asp web board is created the must create a data base. In order to link
these database you must have an .inc file. If there is an error in entering
some in formation, you will sometimes receive this error.
Microsoft OLE DB Provider for ODBC Drivers error 'connect.inc' [Microsoft][ODBC
Microsoft Access Driver]
After looking at this error you can notice one thing: "connect.inc". Then type
"http://victime/locationofinc/connect.inc" and get the source for this file. There
can occur different errors like it happened to me, but they all lead to the same
thing: Yes, it's the .inc. Also remark that it is not always the connect.inc.
It can also be other .inc's as well. The first thing you should do is to take
a look on these lines in the code:
var str_ligacao = "Driver={Microsoft Access Driver (*.mdb)}; DBQ=c:inetpubwwwrootdbdb.mdb"
var forum = "Driver={Microsoft Access Driver (*.mdb)}; DBQ=c:inetpubwwwrootdbforum.mdb"
These 2 lines give the location of the user data base and the forum data base.
Once you have stolen the userdate base you can open it in Microsoftdb or Microsoft
Access. After a quick look you get the usernames and passwords of every user,
which includes the administrator password as well.
To prevent this problem you simply secure the database with a password or move
it to a dir where it can not be accessed by an http user. I hope this helps in
securing your boxes.
Exploit Discovered by Captain Haffox
Exploit Research - www.exploitresearch.net
Thanx to Krulo, Jules and everyone else at exploitresearch.net for having me on
board.
|
|
This article was imported from zZine. (original author: H4ff0x)
There are no replies to this post yet.
|