Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » News Desk 1.2 http vulnerability

News Desk 1.2 http vulnerability

by Phiber on January 9th, 2001 The good folks at b10z Security have discovered an http vulnerability ibrow's News Desk 1.2 news submission script. By entering a specifically malformed URL, an attacker can view any file on the server and can list any directories within the server that are accessible to the owner of the vulnerable httpd. The vendor has been contacted. ibrow will be releasing a secure, updated version in the future.



Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »