CVE-2006-1149

OWL Intranet Engine 0.82 - Remote File Inclusion via xrms_file_root Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1149. PoCs published by rgod.

AI-analyzed exploit summary This exploit targets CVE-2006-1149 in OWL Intranet Engine 0.82 by leveraging remote code execution via the 'xrms_file_root' parameter. It requires register_globals and allow_url_fopen to be enabled, and it fetches a malicious PHP script from a remote location to execute arbitrary commands.

Description

PHP remote file inclusion vulnerability in lib/OWL_API.php in OWL Intranet Engine 0.82, when register_globals is enabled, allows remote attackers to include arbitrary files via a URL in the xrms_file_root parameter, which is not initialized before use.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · perlwebappsphp

https://www.exploit-db.com/exploits/1561

View Code ZIP pw:eip

This exploit targets CVE-2006-1149 in OWL Intranet Engine 0.82 by leveraging remote code execution via the 'xrms_file_root' parameter. It requires register_globals and allow_url_fopen to be enabled, and it fetches a malicious PHP script from a remote location to execute arbitrary commands.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: OWL Intranet Engine 0.82

No auth needed

Prerequisites: register_globals = On · allow_url_fopen = On · remote PHP script hosted on attacker-controlled server

MITRE ATT&CK