Re: [Full-disclosure] Bug with .php extension?
- From: Christopher Kunz <christopher.kunz@xxxxxxxxxxxxxxxx>
- Date: Tue, 06 Dec 2005 11:43:13 +0100
z3n wrote:
> Great Bug indeed!
>
> But don't you think this issue is kind of similar to issue 3 in this
> (old) advisory:
> http://archives.neohapsis.com/archives/bugtraq/2003-01/0203.html
>
Well, actually, I think this is some kind of "feature" and is associated with
the behavior that is i.e. demonstrated on default installations of Apache (which
have several index.html index.html.de .en .jp etc.), only that this time not
mod_negotiation, but mod_mime is responsible.
--ck
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Follow-Ups:
- Re: [Full-disclosure] Bug with .php extension?
- From: Graham Reed
- Re: [Full-disclosure] Bug with .php extension?
- References:
- Prev by Date: Re: [Full-disclosure] Bug with .php extension?
- Next by Date: [Full-disclosure] Packet sniffing help needed
- Previous by thread: Re: [Full-disclosure] Bug with .php extension?
- Next by thread: Re: [Full-disclosure] Bug with .php extension?
- Index(es):
Relevant Pages
|
