Nmap Development mailing list archives
Re: Checking for jboss authentication bypass
From: Patrik Karlsson <patrik () cqure net>
Date: Thu, 8 Dec 2011 20:05:48 +0100
On Tue, Dec 6, 2011 at 2:05 PM, Hani Benhabiles <kroosec () gmail com> wrote:
Good catch! by trying to make the script's use more general, the special case of CVE-2010-0738 was omitted. Here's a patch that should include this case into consideration. On Tue, Dec 6, 2011 at 1:12 PM, Martin Holst Swende <martin () swende sewrote:
Thanks Hani. I applied the patch and added the script to the vuln category. I committed the change as r27381. Cheers, Patrik -- Patrik Karlsson http://www.cqure.net http://twitter.com/nevdull77 _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://seclists.org/nmap-dev/
Current thread:
- Checking for jboss authentication bypass Martin Holst Swende (Dec 06)
- Re: Checking for jboss authentication bypass Hani Benhabiles (Dec 06)
- Re: Checking for jboss authentication bypass Martin Holst Swende (Dec 06)
- Re: Checking for jboss authentication bypass Martin Holst Swende (Dec 06)
- Re: Checking for jboss authentication bypass Martin Holst Swende (Dec 06)
- Re: Checking for jboss authentication bypass Hani Benhabiles (Dec 06)
- Re: Checking for jboss authentication bypass Patrik Karlsson (Dec 08)
- Re: Checking for jboss authentication bypass Martin Holst Swende (Dec 06)
- Re: Checking for jboss authentication bypass Hani Benhabiles (Dec 06)