Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: UkR-XblP™ (cuctemaOK.RU)
Date: Mon Feb 12 2001 - 08:18:48 CST
-=-=-=-=-=[ UkR security team - advisory n0. 7 ]=-=-=-=-=-
tdhttp transversal bug
Problem: possibility of arbitrary file retreival
and directory listing on remote host, running
tdhttp (http.c, probably all its versions).
Workaround: try another http daemon (Apache, for ex.) and
disable http service 'till that time.
Comment: duh. I wonder if I can see /etc/passwd right in my
window. No matter it's only beta version, I mean http.c.
After all, this bug is well-known.
Authors: XblP, S1LENCE
Get your free e-mail address at http://www.zmail.ru