Bugtraq mailing list archives
Re: Hosting Controller Vulnerability
From: Muhammad Faisal Rauf Danka <mfrd () attitudex com>
Date: Sun, 14 Jul 2002 14:31:21 -0700 (PDT)
Instead of using something like @stake web proxy, could you also save the html output of (/accounts/updateuserdesc.asp) locally and change username to administrator and re-submit the form? And how are they validating the user name after applying the patch ? Regards, --------- Muhammad Faisal Rauf Danka Chief Technology Officer Gem Internet Services (Pvt) Ltd. web: www.gem.net.pk _____________________________________________________________ --------------------------- [ATTITUDEX.COM] http://www.attitudex.com/ --------------------------- _____________________________________________________________ Promote your group and strengthen ties to your members with email () yourgroup org by Everyone.net http://www.everyone.net/?btn=tag
Current thread:
- Hosting Controller Vulnerability Ben M (Jul 13)
- <Possible follow-ups>
- Re: Hosting Controller Vulnerability Muhammad Faisal Rauf Danka (Jul 14)
- Re: Hosting Controller Vulnerability James Griffin (Jul 15)
- Re: Hosting Controller Vulnerability Ben M (Jul 15)