Penetration Testing mailing list archives
Re: 3 pigs building web servers? hacker wolf?
From: "Riley Hassell" <root () cyphernaut net>
Date: Tue, 19 Jun 2001 09:43:31 -0700
BrickServer thttpd vulns:
1.) Viewing files:
/cgi-bin/ssi/filetoview
( Can't break webroot if chroot is enabled )
2.) Directory Listings:
/%2f
( Can't break webroot if chroot is enabled )
Riley Hassell
Network Penetration Specialist
eEye Digital Security
Get up...
and light the world on fire.
----- Original Message -----
From: "Robert Shea" <robert.shea () appliedinterconnect com>
To: <pen-test () securityfocus com>
Sent: Monday, June 18, 2001 3:22 PM
Subject: 3 pigs building web servers? hacker wolf?
Is anyone at all familiar with the BrickServer system? (http://brickserver.com/) I have looked over their site and the whole thing looks pretty questionable, but a new client of ours runs it. I have only been able to find the thttp DOS issue. thank you, robert
Current thread:
- finding webroot on IIS todd + 1 (Jun 14)
- RE: finding webroot on IIS George Milliken (Jun 14)
- Re: finding webroot on IIS David Page (Jun 14)
- Re: finding webroot on IIS David Jacoby (Jun 15)
- Re: finding webroot on IIS H D Moore (Jun 14)
- Re: finding webroot on IIS todd + 1 (Jun 14)
- Re: finding webroot on IIS Frederic Guerin (Jun 15)
- Re: finding webroot on IIS Gary Warner (Jun 18)
- 3 pigs building web servers? hacker wolf? Robert Shea (Jun 18)
- Re: 3 pigs building web servers? hacker wolf? ghandi (Jun 19)
- Re: 3 pigs building web servers? hacker wolf? Riley Hassell (Jun 19)
- 3 pigs building web servers? hacker wolf? Robert Shea (Jun 18)
- <Possible follow-ups>
- RE: finding webroot on IIS Yonatan Bokovza (Jun 14)