Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Vulnerability Development: RE: Reported Kazaa and Morpheus vulnerabilities

RE: Reported Kazaa and Morpheus vulnerabilities

From: Elan Hasson <elan_at_daryl.org>
Date: Mon, 4 Feb 2002 09:18:48 -0500

could somone post some of the output (These file names)?

-----Original Message-----
From: HarryM [mailto:harrym_at_the-group.org]
Sent: Monday, February 04, 2002 2:43 AM
To: Blue Boar; Kartik Shinde
Cc: vuln-dev_at_securityfocus.com
Subject: Re: Reported Kazaa and Morpheus vulnerabilities

> Well, I think that's what the original poster was getting at. Anyone
> here tried the usual .. bugs and so on? (Either successfully or not,
> we'd like to know.)
>

Exactly. The BBC article claims that someone has, but there's no mention of
it on CERT or Securityfocus. I mean obviously if there is one it may not
have been posted about.. But I thought someone might have heard something.
Certainly simple things such as appending /../ or /..../ to the end of the
url don't work, but those funky numeric folder names must mean something.

Harry M
Received on Feb 04 2002

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos