[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-Disclosure] More NASA.GOV HOLES: naade02.msfc.nasa.gov
- To: Lorenzo Hernandez Garcia-Hierro <lorenzohgh@nsrg-security.com>
- Subject: Re: [Full-Disclosure] More NASA.GOV HOLES: naade02.msfc.nasa.gov
- From: Byron Copeland <nodialtone@comcast.net>
- Date: 14 Oct 2003 21:18:28 -0400
Welcome to a honey pot putz!
On Tue, 2003-10-14 at 19:21, Lorenzo Hernandez Garcia-Hierro wrote:
> Hi again,
> naade02.msfc.nasa.gov host of nasa is too affected by security holes,
> in this case the stupid hole of maintain sample scripts of iis in the
> webroot.
>
> http://naade02.msfc.nasa.gov/scripts/samples/
>
> http://naade02.msfc.nasa.gov/samples/
>
> http://naade02.msfc.nasa.gov/IISsamples/
>
> w00w,
> NOTE: attacking possibilities are related with FPExtensions in the
> directories.
> VENDOR NOTICED: No contat info found
> NOTE 2: OPEN AN ACCOUNT FOR SECURITY ISSUES
>
> Best regards,
> -------------------------------
> 0x00->Lorenzo Hernandez Garcia-Hierro
> 0x01->/* not csh but sh */
> 0x02->$ PATH=pretending!/usr/ucb/which sense
> 0x03-> no sense in pretending!
> __________________________________
> PGP: Keyfingerprint
> 4ACC D892 05F9 74F1 F453 7D62 6B4E B53E 9180 5F5B
> ID: 0x91805F5B
> **********************************
> No Secure Root Group Security Research Team
> http://www.nsrg-security.com
> ______________________
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html