CVE-2006-1610

SQuery <4.5 - Remote Code Execution

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-1610. PoCs published by uid0.

AI-analyzed exploit summary This Perl script exploits a remote file inclusion vulnerability in SQuery <= 4.5 by injecting a malicious PHP shell via the 'libpath' parameter in 'armygame.php'. It allows remote command execution by fetching and executing arbitrary code from an attacker-controlled server.

Description

PHP remote file inclusion vulnerability in lib/armygame.php in SQuery 4.5 and earlier, as used in products such as Autonomous LAN party (ALP), allows remote attackers to execute arbitrary PHP code via a URL in the libpath parameter. NOTE: this only occurs when register_globals is disabled.

Exploits (1)

exploitdb WORKING POC VERIFIED

by uid0 · perlwebappsphp

https://www.exploit-db.com/exploits/1629

View Code ZIP pw:eip

This Perl script exploits a remote file inclusion vulnerability in SQuery <= 4.5 by injecting a malicious PHP shell via the 'libpath' parameter in 'armygame.php'. It allows remote command execution by fetching and executing arbitrary code from an attacker-controlled server.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: SQuery <= 4.5

No auth needed

Prerequisites: Attacker-controlled server hosting a malicious PHP shell · Network access to the vulnerable SQuery installation

MITRE ATT&CK