Re: uploading files to Apache webserver
From: mel (meling@scan-associates.net)Date: 10/18/01
- Previous message: rain forest puppy: "Re: 0-day exploit..do i hear $1000?"
- In reply to: dzzie@yahoo.com: "Re: uploading files to Apache webserver"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 18 Oct 2001 09:14:24 +0800 From: mel <meling@scan-associates.net> To: dzzie@yahoo.com Subject: Re: uploading files to Apache webserver Message-ID: <20011018091424.A27497@hostname>
> have you tested the PUT script so it is known working ?
it turns out that that particular directory, will give the same
HTML page no matter what html request I give:
http://victim/dir/ will return a default HTML page (which is actually
an output of some CGIs for debugging)
http://victim/dir/1.txt returns the same thing as above
http://victim/dir/non_existent_file returns the same as above
Thus /dir is mapped to a virtual directory or file (I'm not sure how this is
done in Apache)
--mel
meling mudin (meling@scan-associates.net)
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
- Previous message: rain forest puppy: "Re: 0-day exploit..do i hear $1000?"
- In reply to: dzzie@yahoo.com: "Re: uploading files to Apache webserver"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
