httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From r..@ai.mit.edu (Robert S. Thau)
Subject Re: Security interest
Date Fri, 31 May 1996 16:56:48 GMT
  I can't really think how I could exploit this unless the interpreter
  is owned by the webserver id.

Easy --- http://victim.com/perl?-e+yourCode runs yourCode (whatever Perl
code you like) on the victim's machine.  You can't *get* more wide open
than that.

The shocker is that Netscape was actually advising people to set things
up that way with their windows servers in one of their technical notes.
I *hope* they've wised up.

rst

Mime
View raw message