2 matches found
fastrack.remote.txt
Greetings, OVERVIEW A vulnerability in Netscape FastTrack 2.01a will allow any remote user to execute commands as the user running the httpd daemon probably nobody. This service is running by default on a standard UnixWare 7.1 installation. BACKGROUND I've only tested the version of Netscape...
Netscape FastTrack get Command Forced Directory Listing
When the remote web server is issued a request with a lower-case 'get', it will return a directory listing even if a default page such as index.html is present. For example : get / HTTP/1.0 will return a listing of the root directory. This allows an attacker to gain valuable information about the...