[30365] in bugtraq
Monkey Http Daemon
daemon@ATHENA.MIT.EDU (Martin)
Thu Jun 5 15:30:45 2003
Message-ID: <3EDE8C01.3000306@o0.dyndns.org>
Date: Wed, 04 Jun 2003 21:17:05 -0300
From: Martin <broadcast@o0.dyndns.org>
MIME-Version: 1.0
To: "Mr. Bugtraq" <bugtraq@securityfocus.com>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
After reading the PHP XSS "exploit" (I dont know if it qualifies as one)
in phpinfo(), I found out that on the default page of the Monkey Http
Daemon, there is a Test of Supports section. Two links are included:
http://whateverhost/php/index.php
and
http://whateverhost/cgi-bin/test.pl
index.php just contains 'echo phpinfo(); '
Also, test.pl doesnt check for valid input on the forms, so you can
include HTML code, etc. Pretty useless, I know, but I've been reading
posts about this kind of stuff, so I thought i would throw in this.
Found this on the version 0.7.1 version, the latest one i found on
freshmeat.net. I havent contacted the author since I dont know if this
is really a big deal or not.
Well, sorry for bothering and I hope I dont get flamed or anything
