mailing list archives
Re: Checking for jboss authentication bypass
From: Patrik Karlsson <patrik () cqure net>
Date: Thu, 8 Dec 2011 20:05:48 +0100
On Tue, Dec 6, 2011 at 2:05 PM, Hani Benhabiles <kroosec () gmail com> wrote:
Good catch! by trying to make the script's use more general, the special
case of CVE-2010-0738 was omitted. Here's a patch that should include this
case into consideration.
On Tue, Dec 6, 2011 at 1:12 PM, Martin Holst Swende <martin () swende se
Thanks Hani. I applied the patch and added the script to the vuln category.
I committed the change as r27381.
Sent through the nmap-dev mailing list
Archived at http://seclists.org/nmap-dev/
Re: Checking for jboss authentication bypass Martin Holst Swende (Dec 06)