[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Re: Remote root exploit for mod_gzip (with debug_mode)

To: full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] Re: Remote root exploit for mod_gzip (with debug_mode)
From: martin f krafft <madduck@madduck.net>
Date: Thu, 20 Nov 2003 22:17:41 +0100

also sprach Ben Nelson <lists@venom600.org> [2003.11.20.2201 +0100]:
> I s'pose it's only a 'root' exploit if you're running your
> webserver as root.

how foolish that would be. asking for trouble...

-- 
martin;              (greetings from the heart of the sun.)
  \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck
 
invalid/expired pgp subkeys? use subkeys.pgp.net as keyserver!
 
tempt not a desperate man.
                                                -- william shakespeare

Attachment: pgp00089.pgp
Description: PGP signature

References:
- [Full-Disclosure] Remote root exploit for mod_gzip (with debug_mode)
  - From: "Alexander Antipov" <pk95@yandex.ru>
- [Full-Disclosure] Re: Remote root exploit for mod_gzip (with debug_mode)
  - From: martin f krafft <madduck@madduck.net>
- Re: [Full-Disclosure] Re: Remote root exploit for mod_gzip (with debug_mode)
  - From: Ben Nelson <lists@venom600.org>

Prev by Date: Re: [Full-Disclosure] Re: Remote root exploit for mod_gzip (with debug_mode)
Next by Date: Re: [Full-Disclosure] self-exec.zip
Previous by thread: Re: [Full-Disclosure] Re: Remote root exploit for mod_gzip (with debug_mode)
Next by thread: Re: [Full-Disclosure] Re: Remote root exploit for mod_gzip (with debug_mode)
Index(es):
- Date
- Thread