Vulnerability Development mailing list archives

Re: Apache-Nosejob

From: Muhammad Faisal Rauf Danka <mfrd () attitudex com>
Date: Fri, 23 Aug 2002 13:54:21 -0700 (PDT)

Excuse me Mr gotcha but,
apache-nosejob is for OpenBSD 3.0/3.1 , FreeBSD 4.5 and NetBSD 1.5.2 running vulnerable versions of Apache.

You can't use the same one for spawning rootshell on Linux and Solaris SPARC/x86 etc.

Apache Exploits for Solaris SPARC/x86 and linux have not been officially released yet.

Regards
--------
Muhammad Faisal Rauf Danka

Head of GemSEC / Chief Technology Officer
Gem Internet Services (Pvt) Ltd.
web: www.gem.net.pk
Key Id: 0x784B0202
Key Fingerprint: 6F8C EDCF 6C6E 06A5 48D7  6A20 C592 484B 
784B 0202

_____________________________________________________________
---------------------------
[ATTITUDEX.COM]
http://www.attitudex.com/
---------------------------

_____________________________________________________________
Promote your group and strengthen ties to your members with email () yourgroup org by Everyone.net  
http://www.everyone.net/?btn=tag

Current thread:

Apache-Nosejob Jeremy Junginger (Aug 22)
- Re: Apache-Nosejob gotcha (Aug 23)
- <Possible follow-ups>
- RE: Apache-Nosejob Walter Pearce (Aug 23)
- Re: Apache-Nosejob Muhammad Faisal Rauf Danka (Aug 23)