Re: Odd server side scripts source disclosure vulnerability

[Hugo Fortier <hugo.fortier () gmail com>]

Seriously, From those header, there is nothing that can help you guess
the OS... If you would had taken a Educated Guess, you would probably
talked about AIX, Solaris, HP-UX  , Linux, Windows NT or 2000. And I
don't see why it could not be a S/390

Well if it do run on Linux... It's likely that it is running on:
Redhat 6.2
Caldera 2.3 e-Server
Caldera 2.4 e-Desktop
Suse 6.4 for INTEL
Suse 7.0 for Linux/390
TurboLinux 6.0.x Server

And more likely to run on Redhat than any other one...

The more likely guess is either AIX or Solaris...

Does IBM have server other than their Mainframe that support Virtual
Machine? It's unlikely to run on a virtual machine on a Intel
computer, because Websphere need aloth of ressource (CPU / Memory)...

On Fri, 20 Aug 2004 16:22:12 -0400 (EDT), R. DuFresne
<dufresne () sysinfo com> wrote:
> On Fri, 20 Aug 2004, George Hedfors wrote:
>
> > Hi
>
> From the headers sent earlier, these also look to be likely redhat or suse
> realted apaches, running under a vm on one of the IBM platforms, though
> likely not the s390.
>
> Thanks,
>
> Ron DuFresne
> --
> ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
>         admin & senior security consultant:  sysinfo.com
>                         http://sysinfo.com
>
> "Cutting the space budget really restores my faith in humanity.  It
> eliminates dreams, goals, and ideals and lets us get straight to the
> business of hate, debauchery, and self-annihilation."
>                 -- Johnny Hart
>
> testing, only testing, and damn good at it too!
>
>
>
>
> ------------------------------------------------------------------------------
> Ethical Hacking at the InfoSec Institute. All of our class sizes are
> guaranteed to be 12 students or less to facilitate one-on-one interaction
> with one of our expert instructors. Check out our Advanced Hacking course,
> learn to write exploits and attack security infrastructure. Attend a course
> taught by an expert instructor with years of in-the-field pen testing
> experience in our state of the art hacking lab. Master the skills of an
> Ethical Hacker to better assess the security of your organization.
>
> http://www.securityfocus.com/sponsor/InfoSecInstitute_pen-test_040817
> -------------------------------------------------------------------------------

------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.

http://www.securityfocus.com/sponsor/InfoSecInstitute_pen-test_040817
-------------------------------------------------------------------------------