CVE-2007-6504

Hosting Controller < 6.1_hotfix_3.3 - Authenticated Arbitrary Host Header Modification via IIS/iibind.asp

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6504. PoCs published by BugReport.IR.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in Hosting Controller 6.1 Hot fix <= 3.3, including authentication bypass, privilege escalation, and arbitrary file upload leading to remote code execution. It provides detailed steps and HTML/JS PoC code for exploiting these flaws.

Description

Unspecified vulnerability in IIS/iibind.asp in Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote authenticated users to change the headers of arbitrary hosts via an unspecified parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by BugReport.IR · textwebappsasp

https://www.exploit-db.com/exploits/4730

View Code ZIP pw:eip

The exploit demonstrates multiple vulnerabilities in Hosting Controller 6.1 Hot fix <= 3.3, including authentication bypass, privilege escalation, and arbitrary file upload leading to remote code execution. It provides detailed steps and HTML/JS PoC code for exploiting these flaws.

Classification

Working Poc 95%

Attack Type

Rce | Auth Bypass | Sqli | Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Hosting Controller 6.1 Hot fix <= 3.3

No auth needed

Prerequisites: Access to the target Hosting Controller web interface

MITRE ATT&CK