Exploitation Summary
EIP tracks 1 public exploit for CVE-2006-5597. PoCs published by Greg Linares.
AI-analyzed exploit summary This exploit targets a user input validation vulnerability in MiniHTTPServer.NET's join.asp page, allowing an attacker to add a PowerUser account with full read/write access to medium and low-level shares. The exploit sends a crafted HTTP GET request to manipulate the 'FrmMailBox' or 'FrmUserPass' fields.
Description
join.asp in MiniHTTP Web Forum & File Server PowerPack 4.0 allows remote attackers to add or modify arbitrary user accounts via modified (1) frmMailBox and (2) frmUserPass parameters.
Exploits (1)
This exploit targets a user input validation vulnerability in MiniHTTPServer.NET's join.asp page, allowing an attacker to add a PowerUser account with full read/write access to medium and low-level shares. The exploit sends a crafted HTTP GET request to manipulate the 'FrmMailBox' or 'FrmUserPass' fields.