[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Splunk Vulnerability

To: "Zach C." <fxchip@xxxxxxxxx>
Subject: Re: [Full-disclosure] Splunk Vulnerability
From: JxT <jxt.lists@xxxxxxxxx>
Date: Thu, 6 Sep 2012 00:18:44 -0600

On Wed, Sep 5, 2012 at 11:30 PM, Zach C. <fxchip@xxxxxxxxx> wrote:

> 1.) The tool, Splunk, is designed to index logs
> 2.) Logs are arbitrary files.
> Therefore,
> 3.) Splunk is designed to index arbitrary files.
>

Agreed, Splunk is doing exactly what it's designed to do. This is not a
vulnerability within Splunk itself.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Splunk Vulnerability
  - From: Michael D. Wood

References:
- [Full-disclosure] Splunk Vulnerability
  - From: Rodrigo Salvalagio
- Re: [Full-disclosure] Splunk Vulnerability
  - From: Michael D. Wood
- Re: [Full-disclosure] Splunk Vulnerability
  - From: Zach C.

Prev by Date: Re: [Full-disclosure] cloudsafe365 for wordpress: file disclosure
Next by Date: [Full-disclosure] TP-LINK TL-WR340G Wireless Denial of Service
Previous by thread: Re: [Full-disclosure] Splunk Vulnerability
Next by thread: Re: [Full-disclosure] Splunk Vulnerability
Index(es):
- Date
- Thread