hozarares Posted July 24, 2010 Report Posted July 24, 2010 (edited) If you think that vulnerability research is only for computer geeks or hackers, you are wrong! Simple but effective “grep dorks” will be just fine to discover dirty pieces of code in, for example, PHP open source software.Let’s focus on Cacti and use it as our case study as we’ve recently found its latest vulnerabilities using this technique. The next steps were followed to identify and exploit the latest Cacti OS commanding vulnerability found by our research team:?Download Cacti 0.8.7e?Uncompress Cacti?Under Cacti’s directory, find Operating System Function calls, such as “system”, “exec”, “shell_exec” or “popen”?$ grep –i –r “shell_exec(” *Citeste mai departe:http://www.bonsai-sec.com Edited July 24, 2010 by hozarares dfg 1 Quote
