[1361] in linux-security and linux-alert archive
[linux-security] Other security holes in cgi program ?
daemon@ATHENA.MIT.EDU (Love H örnquist- Åstrand)
Fri Dec 20 18:33:59 1996
To: linux-security@redhat.com
Date: Fri, 20 Dec 1996 11:26:42 +0100
From: Love H örnquist- Åstrand <e96_lho@elixir.e.kth.se>
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com
Hello
Maybe not the right list...
I know about the phf cgi script is a hole.
So I look thou my errorlog and surely found a couple (4 accesses)
of tries to run the script. =
Now it passed my mind that i should check what other scripts failed
because they didn't exist.
I have found a two other scripts that some tries to run, I have no
reference to them. These are:
pursuit (3 accesses)
query (3 accesses)
Now comes my guestion are those security holes too or just something
that somebody likes to run.
Love H-=C5strand
lha@ksk.sala.se