[ Advisory for NetCruiser 0.1.2.8 ] [ Netcruiser is made by Netcuiser Software ] [ Site: http://www.netcruiser-software.com ] [ by nemesystm of the DHC ] [ (http://dhcorp.cjb.net - neme-dhcat_private) ] [ ADV-0110 ] /-|=[explanation]=|-\ Netcruiser is a webserver. It has a simple path revealance bug. /-|=[who is vulnerable]=|-\ Anyone running NetCruiser 0.1.2.8 and prior. /-|=[testing it]=|-\ To test this vulnerability, try the following. www.server.com/con www.server.com/com2 www.server.com/com3 Other device names do not exhibit this type of behaviour. /-|=[fix]=|-\ Not known at the moment. Free, encrypted, secure Web-based email at www.hushmail.com
This archive was generated by hypermail 2b30 : Tue Apr 24 2001 - 15:14:17 PDT