[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
ADVISORY: security hole (http response splitting) in snitz forums 2000
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: ADVISORY: security hole (http response splitting) in snitz forums 2000
- From: "Maestro De-Seguridad" <maestrodeseguridad@xxxxxxxxx>
- Date: Thu, 16 Sep 2004 10:00:23 -0500
Author: Maestro (me!)
Date: 16-SEP-04
Vendor: Snitz Communications (www.snitz.com)
Product: Snitz Forums 2000 v3.4.04
Product description: (from vendor website) "the leading ASP forum/bbs on the
internet today"
Problem: Http response splitting (web cache poisoning, xss,
yadayadayada) -
POST /down.asp HTTP/1.0
Content-Type: application/x-www-form-urlencoded
Content-length: 134
(replace curly braces with lessthan and greaterthan)
Vendor status: vendor contacted several times (email to support@ and to the
contact email in the code). No response from vendor.
Find what you are looking for with the Lycos Yellow Pages