Vulnerability Development mailing list archives

Re: Severe Vuln. in "secure" webserver.

From: "Larry W. Cashdollar" <lwc () vapid dhs org>
Date: Tue, 27 Nov 2001 13:01:08 -0500 (EST)


You forgot the "http://";

-- Larry

--------------------Snip---------------------------
GOBBLES@localhost:/tmp/awhttpd$ lynx -dump localhost:8000/../ >GOBBLES
GOBBLES@localhost:/tmp/awhttpd$ cat GOBBLES

Current directory is /tmp/awhttpd/

    -rw-------    1 GOBBLES  hackers       1786 Jul 21 14:34 [1]CHANGES
    -rw-------    1 GOBBLES  hackers          0 Nov 26 09:10 [2]GOBBLES
-----------------------------------------------------

Current thread:

Severe Vuln. in "secure" webserver. vuln-dev (Nov 27)
- Re: Severe Vuln. in "secure" webserver. Renaud Deraison (Nov 27)
- Re: Severe Vuln. in "secure" webserver. Larry W. Cashdollar (Nov 27)