LFI with limitation

---

• From: Jacky Jack <jacksonsmth698@xxxxxxxxx>
• Date: Fri, 21 May 2010 16:30:29 +0630

---

Hi

A URL is vulnerable to LFI but it's removing/stripping null character.


So, are there any ways to bypass it?

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.

http://www.iacertification.org
------------------------------------------------------------------------

---

• Follow-Ups:
  • Re: LFI with limitation
    • From: Paul Melson
  • Re: LFI with limitation
    • From: Danux

• Prev by Date: Re: OT: the detection of illegal gateways
• Next by Date: Re: LFI with limitation
• Previous by thread: OSSTMM 3 based Home Security Vacation Guide v.2!
• Next by thread: Re: LFI with limitation
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Things to do before vulnerability disclosure ... character than FUD. ... finding bugs in software implies the researcher disassembled the ... Information Assurance Certification Review Board ... (Pen-Test) Re: Mapping a network ... Hint: dynamips ... -> route injection. ... Bypass all ip filtering. ... Information Assurance Certification Review Board ... (Pen-Test)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > pen-test  > 2010-05