CVE-2007-0585

webfwlog < 0.92 - Remote Source Code Disclosure via conffile Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0585. PoCs published by GoLd_M.

AI-analyzed exploit summary This exploit leverages a file inclusion vulnerability in WebFWLog 0.92 due to improper handling of the 'conffile' parameter in debug.php when register_globals is enabled. It allows an attacker to read arbitrary files, such as config.php, by manipulating the URL parameters.

Description

include/debug.php in Webfwlog 0.92 and earlier, when register_globals is enabled, allows remote attackers to obtain source code of files via the conffile parameter. NOTE: some of these details are obtained from third party information. It is likely that this issue can be exploited to conduct directory traversal attacks.

Exploits (1)

exploitdb WORKING POC VERIFIED

by GoLd_M · textwebappsphp

https://www.exploit-db.com/exploits/3222

View Code ZIP pw:eip

This exploit leverages a file inclusion vulnerability in WebFWLog 0.92 due to improper handling of the 'conffile' parameter in debug.php when register_globals is enabled. It allows an attacker to read arbitrary files, such as config.php, by manipulating the URL parameters.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: WebFWLog 0.92

No auth needed

Prerequisites: register_globals enabled in php.ini

MITRE ATT&CK