Bugtraq mailing list archives
Exploit: TL003/Dot Bug = Reading Non-Parsable Files
From: "Matthew Murphy" <mattmurphy () kc rr com>
Date: Wed, 10 Jul 2002 17:17:11 -0500
I have produced an exploit, based on Thor's advisory about the OBJECT Cross-Domain scripting attack, that allows users to read some types of files (e.g, INI, BAT, ...) that aren't normally readable through most vulnerabilities. The exploit is available at: http://www.murphy.101main.net/localread.htm "The reason the mainstream is thought of as a stream is because it is so shallow." - Author Unknown
Current thread:
- Exploit: TL003/Dot Bug = Reading Non-Parsable Files Matthew Murphy (Jul 11)