OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: UkR-XblP™ (cuctemaOK.RU)
Date: Mon Feb 12 2001 - 08:16:44 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    Name: "show files" Vulnerability with perl null bite bug.
    Date: 28.01.2001
    About: Way-board - is a popular korean board
    (http://way.co.kr - official site).
    Problem: Through this bug you can see any files, bug works
    on every system were perl is installed. "%00" - means hex
    symbol of the end of the line, used in C,C++ and perl.
    Author: UkR-XblP
    Exploit:http://www.victim.com/way-board/way-board.cgi?db=url_to_any_file%00
    Get your free e-mail address at http://www.zmail.ru