Is this related to the other plugin id 11798 named dcom_rpc_dos.nasl? John B. --- Michel Arboi <mikhailat_private> wrote: > This is supposed to kill some web servers. > > > # > # This script was written by Michel Arboi > <arboiat_private> > # > # GNU Public Licence > # > > if(description) > { > script_id(11798); > script_version ("$Revision$"); > > name["english"] = "Format string on HTTP method > name"; > name["francais"] = "Attaque 'format string' sur un > nom de méthode HTTP"; > script_name(english:name["english"], > francais:name["francais"]); > > desc["english"] = " > The remote web server is vulnerable to a format > string attack > An attacker may use this flaw to make it crash or > even > execute arbitrary code on this host. > > > Solution : upgrade your software or > contact your vendor and inform it of this > vulnerability > > Risk factor : High"; > > > script_description(english:desc["english"]); > > summary["english"] = "Sends an HTTP request with %s > as a method"; > script_summary(english:summary["english"]); > > script_category(ACT_DESTRUCTIVE_ATTACK); snip---snip---- __________________________________ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com
This archive was generated by hypermail 2b30 : Wed Jul 23 2003 - 06:13:13 PDT