Full Disclosure mailing list archives
Re: Re: Remote root exploit for mod_gzip (with debug_mode)
From: Ben Nelson <lists () venom600 org>
Date: Thu, 20 Nov 2003 14:01:26 -0700
I s'pose it's only a 'root' exploit if you're running your webserver as root.
--Ben martin f krafft wrote:
also sprach Alexander Antipov <pk95 () yandex ru> [2003.11.20.2028 +0100]:/ uid=99(nobody) gid=99(nobody) groups=99(nobody)where is the root exploit?
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Remote root exploit for mod_gzip (with debug_mode) Alexander Antipov (Nov 20)
- Re: Remote root exploit for mod_gzip (with debug_mode) martin f krafft (Nov 20)
- Re: Re: Remote root exploit for mod_gzip (with debug_mode) Ben Nelson (Nov 20)
- Re: Re: Remote root exploit for mod_gzip (with debug_mode) martin f krafft (Nov 20)
- Re: Re: Remote root exploit for mod_gzip (with debug_mode) Ron DuFresne (Nov 20)
- Message not available
- Re: Re: Remote root exploit for mod_gzip (with debug_mode) madsaxon (Nov 20)
- Re: Re: Remote root exploit for mod_gzip (with debug_mode) Ben Nelson (Nov 20)
- Re: Remote root exploit for mod_gzip (with debug_mode) martin f krafft (Nov 20)
- Re: Remote root exploit for mod_gzip (with debug_mode) Stephen (Nov 20)
- <Possible follow-ups>
- RE: Re: Remote root exploit for mod_gzip (with debug_mode) Schmehl, Paul L (Nov 20)
- RE: Re: Remote root exploit for mod_gzip (with debug_mode) Frank Knobbe (Nov 20)