[Plugins-writers] nasl for "CVS pserver dir create bug" could be better

• Previous message: Renaud Deraison: "Re: [Plugins-writers] Nmap Plugin"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Plugin 11947, CVS pserver dir create bug, could be better.  The regex
has the recent versions, but lots of older versions of CVS still have
the same issue.

After logging in, the following should be done:

Send:
    "Argument /nessus\n Directory .\n/cvsroot/nessus\nexpand-modules\n"
You should get back (otherwise failure, something else must be wrong):
    "Module-expansion /nessus\nok\n"
Then send:
    "Argument -N\nArgument /nessus\nDirectory .\n/cvsroot/nessus\nco\n"
If you get back:
    "E cvs server: warning: cannot make directory CVS in /: Permission denied\n"
Then you are vulnerable.

NOTE: I use the repository "/nessus" but it could also be changed to
be an random alphanumeric string.

Brian
_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers

• Next message: Paul Johnston: "Re: [Plugins-writers] Nmap Plugin"
• Previous message: Renaud Deraison: "Re: [Plugins-writers] Nmap Plugin"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Dec 19 2003 - 08:52:15 PST