Vulnerability Development mailing list archives
Cgi-bin Shows password files in Cobalt Linux
From: magnet0 <magnet0 () linuxmail org>
Date: 3 Jan 2002 00:43:32 -0000
In many (im not sure if all) Cobalt Linux release 6.0 (Shinkansen) sytems, i have found that in the directory cgi-bin you can find several files such as "default.pass" that contains encrypted passwords and also you can find log files or others. It is very simple: (the server must be cobalt linux realease 6.0) www.xxxxx.com/cgi-bin There you will find a lot of files that can compromise the system.
Current thread:
- Cgi-bin Shows password files in Cobalt Linux magnet0 (Jan 02)