[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-developers] Chili!Soft ASP Multiple Vulnerabilities

Subject: RE: [cobalt-developers] Chili!Soft ASP Multiple Vulnerabilities
From: baltimoremd@xxxxxxxxxxxxxxx
Date: Fri Feb 23 21:04:06 2001
List-id: Discussion Forum for developers on Cobalt Networks products <cobalt-developers.list.cobalt.com>

On Fri, 23 Feb 2001, Tony wrote:

> 
> >On Wed, 21 Feb 2001, Tony wrote:
> >
> >> http://<server>/caspsamp/codebrws.asp?source=/caspsamp/../admin/conf/service
> >> .pwd
> >
I went into the control panel and selected ASP Administrative Server
Properties - Parameters

The server is running, and I'm now at
http://myipnumber:5100/caspadmin/server.props.asp?server=%2Fhome%2F
chiliasp%2Fasp%2Dapache%2D3000
> 
> You did substitute <server> for your server name right? <g>
> And inclue the /service.pwd ?
> And have the ASP server running?

And then I pasted in the  example you gave after the 5100
http://myipnumber:5100/caspsamp/codebrws.asp?source=/caspsamp/../admin/conf
/service.pwd

And got
The requested URL /caspsamp/codebrws.asp was not found on this server.

Additionally, a 404 Not Found error was encountered while trying to use an
ErrorDocument to handle the request. 

So...it doesn't act, at least as far as I can tell, as deatiled in the
post.

Thom
././././././././././././././././././././././././././././././././././././././
baltimoremd@xxxxxxxxxxxxxxx             Thom LaCosta K3HRN Webmaster

Follow-Ups:
- RE: [cobalt-developers] Chili!Soft ASP Multiple Vulnerabilities
  - From: Tony

References:
- RE: [cobalt-developers] Chili!Soft ASP Multiple Vulnerabilities
  - From: Tony

Prev by Date: RE: [cobalt-developers] Chili!Soft ASP Multiple Vulnerabilities
Next by Date: Re: [cobalt-developers] Servlets on Raq2
Previous by thread: RE: [cobalt-developers] Chili!Soft ASP Multiple Vulnerabilities
Next by thread: RE: [cobalt-developers] Chili!Soft ASP Multiple Vulnerabilities

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index