|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: gobbles
hushmail.comDate: Wed Jun 19 2002 - 17:00:55 CDT
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
There's been a lot of argument suggesting that the socalled "chunking" vulnerability in Apache is not exploitable on x86/*nix. A lot of experts have offered good arguments as to why it can't be exploited.
Unfortunately, most experts are not turkies.
GOBBLES Security proudly presents a proof-of-concept code for this vulnerability. This exploit will work on OpenBSD 3.0 and 3.1, with any vulnerable 1.3.x httpd running.
God have mercy on our souls.
- -GOBBLES Security
-----BEGIN PGP SIGNATURE-----
Version: Hush 2.1
Note: This signature can be verified at https://www.hushtools.com
wlwEARECABwFAj0Q/c8VHGdvYmJsZXNAaHVzaG1haWwuY29tAAoJEBzRp5chmbAPkMoA
oK65Y+l6o1u8rWRZkR7lPPzRoiTsAKCwnIlgb6ZZQ9/X+VV9HgqwfFoJWw==
=Cwih
-----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]