Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: JIRA Pentest
From: Patrick Webster <sflist () aushack com>
Date: Thu, 20 Oct 2011 00:56:28 +1100

Check for embedded 3rd party software bugs.

E.g. http://www.osisecurity.com.au/advisories/jfreechart-path-disclosure
applies to some Atlassian products. Path disclosure ain't much but may
help you combined with other bugs.

-Patrick

On Wed, Oct 19, 2011 at 2:28 AM, Bog Witch <iambogwitch () gmail com> wrote:
All,

Is there anyone on this list with commercial JIRA pentest exposure?

Please email responses directly.

Thanks,

Bog

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------



------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]