Hi. This is off-topic, but I really need some help. If there's someone with access to an IRIX v.4 System, can you verify an apparantly large security hole in the lister cgi script? A vulnerable system will print the /etc/passwd when the following URL is accessed: http://www.example.com/cgi-bin/lister?/etc/passwd Unfortunatey, I don't have a handy IRIX machine to verify this. Can someone check this thing out and let me know? (all ACKs or NACKs are welcomed). Thanks. ------------------------- Aviram Jenik "Addicted to Chaos" ------------------------- Today's quote: Equations are more important to me, because politics is for the present, but an equation is something for eternity. - Albert Einstein ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
