|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  World Laboratory of Bugtraq Database |
||||||||||
SecurityAlert : None
Credit : Ghost Hacker Added by : SecurityReason SecurityRisk : High  (About) Remote : Yes Local : No Status : Bug
Text : Title : LeapFTP 2.5.7 (leapftp.ini) Password Disclosure Vulnerability Author : Ghost Hacker Blog : http://gh05th4ck.wordpress.com Email : ghost-r00t@windowslive.com Download Software : http://download.chip.eu/en/LeapFTP-2.7.5_35821.html Version : 2.7.5 Tested on : Windows XP SP2 ######################################################################## Vulnerability : Open the file "leapftp.ini" in the following path C: \ Program Files \ LeapFTP Search for "History tag" , you will find in this format [History] h1=xxx.com:xxxx:yN~YzB‚AEE‰F}6z5‡8& amp;#8222;8ٹ3{EFMHL‡8 Each line is responsible for site Copy and paste this line in the file leapftp.ini for the same program on another machine And you'll find location data added to the program and can enter through the FTP. Video of the explanation : http://www.mediafire.com/?2z0mdnwgnyn ./Gh05t_H4ck3r If you want change this note, please use UCP
|
||||||||||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |