Vulnerability Development mailing list archives
Re: [VULN-DEV] Re: VERY POOR TITLE... master.cgi
From: bugtraq <bugtraq () cgisecurity net>
Date: Mon, 4 Jun 2001 19:55:24 +0000 (GMT)
It's possible the CGI that was compromised is distributed under a different name than the one you found. What form element names get passed to it, and more importantly, what is the CGI supposed to do? These two bits of information will probably identify it fairly quickly.
Yeah often times people will rename there scripts so people who like to use search engines to hack sites with don't find there script. You also must keep in mind alot of people name a script the same thing. There are quite a few whois.cgi's all written by different authors which you must also keep in mind. I'm also assuming you've found a hole in this so why not (if this is the case) try asking for the scripts own sourcecode. That usually stores vendor info. - zenomorph
Current thread:
- Re: PIX revealing Statics when hit with NMAP... John (May 31)
- POOR TITLE... master.cgi Re: PIX revealing Statics when hit with NMAP... KF (Jun 01)
- Re: VERY POOR TITLE... master.cgi John (Jun 03)
- Re: [VULN-DEV] Re: VERY POOR TITLE... master.cgi Joe (Jun 03)
- Re: [VULN-DEV] Re: VERY POOR TITLE... master.cgi bugtraq (Jun 04)
- Re: VERY POOR TITLE... master.cgi John (Jun 03)
- POOR TITLE... master.cgi Re: PIX revealing Statics when hit with NMAP... KF (Jun 01)
- <Possible follow-ups>
- RE: PIX revealing Statics when hit with NMAP... Keith.Morgan (May 31)
- Re: PIX revealing Statics when hit with NMAP... Nuno Fernandes (Jun 01)