Jump to content

Boa HTTPd 0.94.14rc21 arbitrary file exploit not workig

Le@rner

By Le@rner
in Security

 Share

Recommended Posts

Le@rner Newbie

Le@rner

Posted
Posted

hi Guys, 

One of your server is using Boa HTTPd 0.94.14rc21, I was reading regrading the arbitary file exploit and tried to see if it's working and it's not. 

this is the exploit page. 

https://www.exploit-db.com/exploits/42290/

However, when I try on server using telnet. I am getting Connection closed by foreign host.

And if I try to exploit this using browser as mentioned below  

http://192.168.0.1:81/../../../../../../../../var/log/messages

 

it says 

404 Not Found

The requested URL /var/log/messages was not found on this server.

 

Also, my question, is even if I get access to files,  how is it possible that I can get access to root password? 

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...