Proof of concept Remote Apache 1.3.x Exploit

VX · Jun 20, 2002, 23:04

Nu derjites'!

exploid zdes':
http://vx.mine.nu/vuln/chunk.c

Upgrade upgrde upgrade!

BTW u menya ne upgradeno

_00
Poka Ne upgradeno..no esli uspete....

Mono · Jun 20, 2002, 23:12

Dzec !!!

VX · Jun 21, 2002, 02:47

inc@ dzec, vor chem arel update

Arden vaxuc arel em

Mono · Jun 21, 2002, 23:08

Chdzec !!!

Ektich · Jun 26, 2002, 00:01

A na linuxe eto rabotaet? Ili tolko pod BSD?

VX · Jun 26, 2002, 22:24

Quote:

Originally posted by Ektich:
A na linuxe eto rabotaet? Ili tolko pod BSD?

Govoryat ujse nashli retaddr dlya redhat 7.0

BTW vishla versiya takje dlya x86 Freebsd

Artashes Kalantarian · Jul 2, 2002, 00:45

Hello again,
The apache exploit is nearly for any OS Solaris, *BSD, Linux ...
The exploit which you have got VX was sent by Gobbles 3 weeks ago which is for newbies and is just for OpenBSD there is another exploit sent by Gobbles for *BSD but it doesn't mean that Solaris is not affected.
Beside Gobbles tell that that is not a remote exploit but a backdoor left by apache.

Thanks

VX · Jul 2, 2002, 04:25

Please forward me that message!.
BTW i've post this sploit 2 weeks ago.
I've never post exploids at the same day.
First i do upgrade myself;-))

Thank you too for comments!
Hope to see you every day here.

VX · Jul 2, 2002, 04:39

By the way
http://www.host.am/.
http://www.host.am/..

;-)) have a nice ls in youre documentroot

Artashes Kalantarian · Jul 2, 2002, 06:12

Thanks VX,
CommuniGate Pro the buggest system in the world.
They have corrected that bug some year ago but ...
But I can tell that you can do nothing with it cause you have no permission do it.
Protected system is realy protected one.
Thanks

VX · Jul 2, 2002, 06:34

Dear Artka
I don't need youre system or someone more...i don't care what do you have on youre fs..phpMyChat ,sth special..

But i can't understand what's stopping you to do an upgrade: license or crack?

This is alreday offtopic......drop me youre icq UIN

Artashes Kalantarian · Jul 2, 2002, 06:46

Dear VX
The problem is that you have found a new bug in CommuniGatePro.
You can report it or check the site http://www.stalker.com/CommuniGatePro

)))))

VX · Jul 2, 2002, 06:59

Ayo,
3 posta u menya v razdele, i ti uje xamish, kuda molodej katitsya, BTW ya pomoemu sprosil tvoy UIN.

Artashes Kalantarian · Jul 2, 2002, 07:01

irc://eefnet/#prhack we are not there but we sniff the channel

Yerkanian · Jul 2, 2002, 22:45

don't sniff it!!!

They'll backtrace and own your box

Jun 20, 2002, 23:04	#1
VX Консервативный Демагог Join Date: Jan 2002 Location: Кавказская Албания Posts: 889 Rep Power: 7 Reputation: 10	Proof of concept Remote Apache 1.3.x Exploit Nu derjites'! exploid zdes': http://vx.mine.nu/vuln/chunk.c Upgrade upgrde upgrade! BTW u menya ne upgradeno _00 Poka Ne upgradeno..no esli uspete.... __________________ Праздник к нам приходит... \|^^^^^^^^^'''^\\| \|\|\__ \| ВОДКА-ВОДКА \| \|\|','''\|'''''''\_____,_ \| _..... _ \| \|\|_ _\|'__\|_____\|\|.........\| \| '(@)'(@)'(@)''''''''''''''''''''''\|(@)""""\|(@)

Jun 20, 2002, 23:12	#2
Mono Moderator Join Date: Oct 2001 Location: Yerevan Posts: 5,409 Blog Entries: 1 Rep Power: 8 Reputation: 102	Dzec !!! __________________ --------------- *Արատտայի ու Խալդեյի հովանավոր* .

Jun 21, 2002, 02:47	#3
VX Консервативный Демагог Join Date: Jan 2002 Location: Кавказская Албания Posts: 889 Rep Power: 7 Reputation: 10	inc@ dzec, vor chem arel update Arden vaxuc arel em __________________ Праздник к нам приходит... \|^^^^^^^^^'''^\\| \|\|\__ \| ВОДКА-ВОДКА \| \|\|','''\|'''''''\_____,_ \| _..... _ \| \|\|_ _\|'__\|_____\|\|.........\| \| '(@)'(@)'(@)''''''''''''''''''''''\|(@)""""\|(@)

Jun 21, 2002, 23:08	#4
Mono Moderator Join Date: Oct 2001 Location: Yerevan Posts: 5,409 Blog Entries: 1 Rep Power: 8 Reputation: 102	Chdzec !!! __________________ --------------- *Արատտայի ու Խալդեյի հովանավոր* .

Jun 26, 2002, 00:01	#5
Ektich Guru Apprentice Join Date: Feb 2002 Location: /dev/null Posts: 524 Rep Power: 7 Reputation: 10	A na linuxe eto rabotaet? Ili tolko pod BSD? __________________ \/\/h47'5 1n 4 n4m3? 7h47 wh1(h w3 (4\|\| 4 r053, 8y 4ny 07h3r n4m3 w0u\|d 5m3\|\| 45 5w337...

Jul 2, 2002, 00:45	#7
Artashes Kalantarian Младенец Join Date: Jul 2002 Location: Arminco Posts: 18 Rep Power: 0 Reputation: 10	Hello again, The apache exploit is nearly for any OS Solaris, BSD, Linux ... The exploit which you have got VX was sent by Gobbles 3 weeks ago which is for newbies and is just for OpenBSD there is another exploit sent by Gobbles for BSD but it doesn't mean that Solaris is not affected. Beside Gobbles tell that that is not a remote exploit but a backdoor left by apache. Thanks

Jul 2, 2002, 04:25	#8
VX Консервативный Демагог Join Date: Jan 2002 Location: Кавказская Албания Posts: 889 Rep Power: 7 Reputation: 10	Please forward me that message!. BTW i've post this sploit 2 weeks ago. I've never post exploids at the same day. First i do upgrade myself;-)) Thank you too for comments! Hope to see you every day here. __________________ Праздник к нам приходит... \|^^^^^^^^^'''^\\| \|\|\__ \| ВОДКА-ВОДКА \| \|\|','''\|'''''''\_____,_ \| _..... _ \| \|\|_ _\|'__\|_____\|\|.........\| \| '(@)'(@)'(@)''''''''''''''''''''''\|(@)""""\|(@)

Jul 2, 2002, 04:39	#9
VX Консервативный Демагог Join Date: Jan 2002 Location: Кавказская Албания Posts: 889 Rep Power: 7 Reputation: 10	By the way http://www.host.am/. http://www.host.am/.. ;-)) have a nice ls in youre documentroot __________________ Праздник к нам приходит... \|^^^^^^^^^'''^\\| \|\|\__ \| ВОДКА-ВОДКА \| \|\|','''\|'''''''\_____,_ \| _..... _ \| \|\|_ _\|'__\|_____\|\|.........\| \| '(@)'(@)'(@)''''''''''''''''''''''\|(@)""""\|(@)

Jul 2, 2002, 06:12	#10
Artashes Kalantarian Младенец Join Date: Jul 2002 Location: Arminco Posts: 18 Rep Power: 0 Reputation: 10	Thanks VX, CommuniGate Pro the buggest system in the world. They have corrected that bug some year ago but ... But I can tell that you can do nothing with it cause you have no permission do it. Protected system is realy protected one. Thanks

Jul 2, 2002, 06:34	#11
VX Консервативный Демагог Join Date: Jan 2002 Location: Кавказская Албания Posts: 889 Rep Power: 7 Reputation: 10	Dear Artka I don't need youre system or someone more...i don't care what do you have on youre fs..phpMyChat ,sth special.. But i can't understand what's stopping you to do an upgrade: license or crack? This is alreday offtopic......drop me youre icq UIN __________________ Праздник к нам приходит... \|^^^^^^^^^'''^\\| \|\|\__ \| ВОДКА-ВОДКА \| \|\|','''\|'''''''\_____,_ \| _..... _ \| \|\|_ _\|'__\|_____\|\|.........\| \| '(@)'(@)'(@)''''''''''''''''''''''\|(@)""""\|(@)

Jul 2, 2002, 06:46	#12
Artashes Kalantarian Младенец Join Date: Jul 2002 Location: Arminco Posts: 18 Rep Power: 0 Reputation: 10	Dear VX The problem is that you have found a new bug in CommuniGatePro. You can report it or check the site http://www.stalker.com/CommuniGatePro )))))

Jul 2, 2002, 06:59	#13
VX Консервативный Демагог Join Date: Jan 2002 Location: Кавказская Албания Posts: 889 Rep Power: 7 Reputation: 10	Ayo, 3 posta u menya v razdele, i ti uje xamish, kuda molodej katitsya, BTW ya pomoemu sprosil tvoy UIN. __________________ Праздник к нам приходит... \|^^^^^^^^^'''^\\| \|\|\__ \| ВОДКА-ВОДКА \| \|\|','''\|'''''''\_____,_ \| _..... _ \| \|\|_ _\|'__\|_____\|\|.........\| \| '(@)'(@)'(@)''''''''''''''''''''''\|(@)""""\|(@)

Jul 2, 2002, 07:01	#14
Artashes Kalantarian Младенец Join Date: Jul 2002 Location: Arminco Posts: 18 Rep Power: 0 Reputation: 10	irc://eefnet/#prhack we are not there but we sniff the channel

Jul 2, 2002, 22:45	#15
Yerkanian freelancer Join Date: Jun 2002 Location: the same place Posts: 592 Rep Power: 7 Reputation: 10	don't sniff it!!! They'll backtrace and own your box

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode