Metasploit mailing list archives
apache mod_rewrite
From: hypnojazz at gmail.com (Giuseppe Senese)
Date: Fri, 29 Sep 2006 22:16:41 +0200
FreeBSD 5.5-STABLE enable in default ports installation. On 9/29/06, Tomas L. Byrnes <tomb at byrneit.net> wrote:
I know of a few Load Balancers that use it. -----Original Message----- From: Omen [mailto:omen at mysec.org] Sent: Friday, September 29, 2006 12:03 PM To: framework at metasploit.com Subject: Re: [framework] apache mod_rewrite Mostly on our gov office use this for their local network use. I dont know about others.. maybe you guys wanna say something.. H D Moore wrote:Can you think of a case where this exploit is useful? How many people have mod_rewrite and mod_ldap enabled? Any pen-testers want to share stats on the prevalence of this flaw? -HD On Friday 29 September 2006 13:38, Omen wrote:Hey guys, Does anyone out there free to write this sploit on 2.6? I believe theres a PoC at http://milw0rm.com/exploits/2237
-- Version: GnuPG v1.4.1 (GNU/Linux) {FingerPrint} 0E0E 2C55 1D4D 6239 C66F BCD9 9147 92A1 51DB 5D91 -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.metasploit.com/pipermail/framework/attachments/20060929/ce37278e/attachment.htm>
Current thread:
- apache mod_rewrite Omen (Sep 29)
- apache mod_rewrite H D Moore (Sep 29)
- apache mod_rewrite Omen (Sep 29)
- apache mod_rewrite Tomas L. Byrnes (Sep 29)
- apache mod_rewrite Giuseppe Senese (Sep 29)
- apache mod_rewrite Giuseppe Senese (Sep 29)
- apache mod_rewrite Omen (Sep 29)
- apache mod_rewrite H D Moore (Sep 29)