Penetration Testing mailing list archives

Information about /scripts/toos/mkilog.exe

From: César González <sec () linuxcantabria sytes net>
Date: Tue, 31 Jul 2001 13:48:26 +0200

Hello all,

I am making a penetration testing, and some vulnerability scanners alert 
about the script mkilog.exe. Most exactly nessus said the following :

    The CGI /scripts/tools/mkilog.exe is present.
 
    This CGI allows an attacker to view and modify SQL database
    contents.

No securityfocus links, CVE advisory, etc. i have search most popular 
security search engines but nothing appears. Any help will be appreciated.

Regards.


César González.
Eureka Sistemas S.L.
C/ San Fernando 16 bajo
Santander 39010
Spain
http://www.eureka-sistemas.com/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Current thread:

Information about /scripts/toos/mkilog.exe César González (Jul 31)
- Re: Information about /scripts/toos/mkilog.exe H D Moore (Jul 31)