Vulnerability Development mailing list archives
Re: [VULN-DEV] Re: VERY POOR TITLE... master.cgi
From: Joe <joe () blarg net>
Date: Sun, 3 Jun 2001 10:29:45 -0700 (PDT)
On Fri, 1 Jun 2001, John wrote:
Hi KF I couldn't find any reference to this script except for one and that turned up nothing. I talked to the vendor for about two days and it turned out that he was not the author of the script I was looking for, but he decided to review all of his source code after talking with me =) I ask the list for help because an associate of mine found a exploit on an compromised machine for master.cgi, so, I wanted to get in contact with the vendor to see if they know about this vulnerability. Also, sorry for the mistake on the subject.
It's possible the CGI that was compromised is distributed under a different name than the one you found. What form element names get passed to it, and more importantly, what is the CGI supposed to do? These two bits of information will probably identify it fairly quickly. -- Joe Technical Support General Support: support () blarg net Blarg! Online Services, Inc. Voice: 425/401-9821 or 888/66-BLARG http://www.blarg.net
Current thread:
- Re: PIX revealing Statics when hit with NMAP... John (May 31)
- POOR TITLE... master.cgi Re: PIX revealing Statics when hit with NMAP... KF (Jun 01)
- Re: VERY POOR TITLE... master.cgi John (Jun 03)
- Re: [VULN-DEV] Re: VERY POOR TITLE... master.cgi Joe (Jun 03)
- Re: [VULN-DEV] Re: VERY POOR TITLE... master.cgi bugtraq (Jun 04)
- Re: VERY POOR TITLE... master.cgi John (Jun 03)
- POOR TITLE... master.cgi Re: PIX revealing Statics when hit with NMAP... KF (Jun 01)
- <Possible follow-ups>
- RE: PIX revealing Statics when hit with NMAP... Keith.Morgan (May 31)
- Re: PIX revealing Statics when hit with NMAP... Nuno Fernandes (Jun 01)