[15744] in bugtraq
Re: BIG BROTHER EXPLOIT
daemon@ATHENA.MIT.EDU (Jean Charles Delepine)
Wed Jul 12 13:40:58 2000
Mail-Copies-To: never
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Message-Id: <87itubwn6r.fsf@zulte.u-picardie.fr>
Date: Wed, 12 Jul 2000 14:25:00 +0200
Reply-To: delepine@U-PICARDIE.FR
From: Jean Charles Delepine <delepine@U-PICARDIE.FR>
X-To: eric.hines@nuasis.com
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: Eric Hines's message of "Tue, 11 Jul 2000 10:18:02 -0700"
Content-Transfer-Encoding: 8bit
Eric Hines <eric.hines@nuasis.com> writes:
> Revision to last post, the affected versions ALSO include v1.4H. Its all
> current versions, including the newest.
Change for 1.4h2
10 Jul 2000 web/bb-hostsvc.sh Fixed security hole: outsiders
could peek on any file the
web server had access.
Thanks to Eric Hines <eric.hines@nuasis.com>
and Safety
The 1.4h2 is the one served in http://bb4.com/download.html
http://server/cgi-bin/bb-hostsvc.sh?HOSTSVC=/../../../../../../../../etc/passwd
ERROR!
bb-hostsvc.sh called with invalid arguments
Jean Charles
--
Jean Charles Delépine - Équipe Réseaux Télécoms - Université de Picardie
-+- If NT is the answer, you didn't understand the question. -+-
