On 4/24/07, Michal Majchrowicz <[EMAIL PROTECTED]> wrote:
> Hi.
> I think now we can classify this as flaw in Apache. It accepts
> requests that simply make no sense. Take a look at this example:
> <script>alert(document.cookie);</script> /test.php
> <script>alert(document.cookie);</script>
> In some circumstances it may cause XSS vulnerability:
> <?php
> echo $_SERVER['REQUEST_METHOD'];
> echo $_SERVER['SERVER_PROTOCOL'];
> ?>
> I am now investigating other possible attacks.
> Regards Michal Majchrowicz.
<?php
echo htmlentities($_SERVER['REQUEST_METHOD']);
echo htmlentities($_SERVER['SERVER_PROTOCOL']);
?>
Sorry but,
where's the hole? (^-^)
(OK Apache shouldn't, but you too.)
--
Guasconi Vincent
Etudiant.
http://altmylife.blogspot.com
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
