Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Security concern of SendBinary method
From: phoebe <phoebe () tollon net>
Date: Fri, 3 Aug 2001 12:43:49 +0100 
Hi all,

Does anybody using the SendBinary method ??

The method SendBinary has been given another optional argument, Attachment,
which controls whether the Content-Disposition header has the keyword
"attachment;" in it which forces a download for certain file types instead
of opening a document in-place in the IE browser.  

According to the recommendation in a Web-Hosting environment, it is better
to disable this function in registry as below,

The UploadManager.SendBinary method is disabled through the
DisableSendBinary value. 

Could somebody tell me about the security risk of SendBinary method and how
to fix it please ?  I am so desperate want to use this method over the
website.

Please advice.

Thanks in advance.

Regards,
Phoebe

  By Date           By Thread  

Current thread:
  • Security concern of SendBinary method phoebe (Aug 03)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]