Most directory traversal tomcat related news are at:
Outsourcing, and rebranding, (national) security 26 Aug 2013 | 10:40 pm
I was thinking about the recent trend, in the US, for “outsourcing” and “privatization” of security functions, in order to reduce (government) costs. For example, we know, from the Snowden debacle, t...
Hardening guide for Postfix 2.x 24 Aug 2013 | 11:00 am
Make sure the Postfix is running with non-root account: ps aux | grep postfix | grep -v '^root' Change permissions and ownership on the destinations below: chmod 755 /etc/postfix chmod 644 /etc/post...
More directory traversal tomcat related news:
[BT5-R1] Another Story of Directory Traversal .. ray16.info 21 Feb 2012 | 09:55 pm
sudah semenjak terakhir Unicode / UTF-8 encoded directory traversal ditemukan pada tahun 2000, hemm 12 tahun lalu.. kemarin gw sempet melakukan pentest di salah satu perusahaan XXXXXXXXX, ada 1 hal y...
Autenticazione nativa Windows Active Directory in Tomcat bits4beats.it 22 Jul 2011 | 07:47 pm
Per un interessante progetto a cui sto lavorando, ho avuto la necessità di configurare Tomcat per poter autenticare nativamente i client (con browser IE7 e IE8 e Firefox) attraverso il repository Acti...
Finalmente disponibile Firefox 2.0.0.12 blogfuture.files.wordpress.com 9 Feb 2008 | 09:36 am
Come ci si attendeva, Mozilla ha rilasciato una versione aggiornata di Firefox che va a correggere la vulnerabilità di directory traversal individuata lo scorso mese dal ricercatore Gerry Eisenhaur. ...
myEASYbackup 1.0.9 myeasywp.com 21 Jan 2012 | 02:05 am
Fixed a directory traversal vulnerability that allowed for arbitrary file downloads. It is warmly advised to install the new version as soon as possible!
Skavurska! Motorola SURFBoard Cable Modem Directory Traversal segurancalinux.com 17 Jun 2010 | 04:35 am
Encontrada recentemente uma vulnerabilidade que pode ser explorada nos modems Motorola SURFBoard através de "directory traversal", exibindo assim informações valiosas. Realizados os testes no modelo S...
ColdFusion directory traversal FAQ (CVE-2010-2861) gnucitizen.org 14 Aug 2010 | 03:31 am
A new Adobe hotfix for ColdFusion has been released recently. The vulnerability which was discovered by Richard Brain, was rated as important by Adobe and could affect a large number of Internet-facin...
Tridium Niagara – Directory Traversal xs-sniper.com 26 Nov 2012 | 05:30 pm
In July of this year, I wrote about some of the frustrations I encountered when working with Tridium and trying to get them to fix various issues with their Niagara framework. The Niagara framework is...
LFI/directory traversal in REQUEST_URI videochat-software.com 16 Dec 2012 | 02:09 am
VideoWhisper components are affected by other components and plugins and alters its requests and urls. Behavior for users: Application freezes on login screen after checking license. This issue occu...
Kohana Framework v2.3.3 Directory Traversal Vulnerability comositas.com 30 Jan 2013 | 11:55 am
Title: ====== Kohana Framework v2.3.3 - Directory Traversal Vulnerability Date: ===== 2013-01-27 References: =========== http://www.vulnerability-lab.com/get_content.php?id=841 VL-ID: ===== 837 Common...
Directory Traversal Vulnerability ketkip.com 1 Sep 2012 | 11:55 am
A directory traversal consists in exploiting insufficient security validation of user-supplied input file names, so that characters representing “traverse to parent directory” are passed through to th...