WebApp Sec mailing list archives
Re[2]: [Full-disclosure] Attacking the local LAN via XSS
From: Thierry Zoller <Thierry () Zoller lu>
Date: Fri, 4 Aug 2006 14:11:40 +0200
Dear pdp (architect), pa> BTW, there are quite a lot cisco devices that have http open on local pa> LAN vulnerable to IOS HTTP Authorization Vulnerability. That's my point, I have done an ehaustive amount of pentest, I have never come accross a router with accessible HTTP port. Maybe that's related to the nature of the networks though. -- http://secdev.zoller.lu Thierry Zoller Fingerprint : 5D84 BFDC CD36 A951 2C45 2E57 28B3 75DD 0AC6 F1C7 ------------------------------------------------------------------------- Sponsored by: Watchfire Do you test web applications for XSS, SQL Injections, Buffer Overflows, Logical issues and other web application security threats? Why not automate this work with Watchfire's AppScan, the world's leading automated web application scanner. Download AppScan today! https://www.watchfire.com/securearea/appscancamp.aspx?id=701300000008BP9 --------------------------------------------------------------------------
Current thread:
- Attacking the local LAN via XSS pdp (architect) (Aug 03)
- Re: [Full-disclosure] Attacking the local LAN via XSS Schanulleke (Aug 04)
- Message not available
- Re: [Full-disclosure] Attacking the local LAN via XSS pdp (architect) (Aug 04)
- Re[2]: [Full-disclosure] Attacking the local LAN via XSS Thierry Zoller (Aug 04)
- Re: Re[2]: [Full-disclosure] Attacking the local LAN via XSS pdp (architect) (Aug 04)
- Re: [Full-disclosure] Attacking the local LAN via XSS Nikolay Kubarelov (Aug 07)
- Re: [Full-disclosure] Attacking the local LAN via XSS Dude VanWinkle (Aug 08)
- Re: [Full-disclosure] Attacking the local LAN via XSS pdp (architect) (Aug 04)