| Ãë¾àÁ¡ID |
22023 |
| À§Çèµµ |
30 |
| Æ÷Æ® |
80, ... |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
WWW |
| »ó¼¼¼³¸í |
¿ÜºÎ¿¡¼ À¥¼¹ö»óÀÇ ÀÓÀÇÀÇ ÆÄÀÏÀ̸§ ¾Õ¿¡ "~nobody/"(~nobody/etc/passwd ó·³)¸¦ ºÙÀÓÀ¸·Î½á ¿øÇÏ´Â ÆÄÀϵéÀ» °¡Áö°í ¿Ã ¼ö ÀÖ´Ù. ÀÌ ¹®Á¦´Â Apache ¼¹ö¿¡¼ UserDirÀ» "./."À¸·Î ¼ÂÇؼ »ý±â´Â ¹®Á¦Á¡ÀÌ´Ù.
* Âü°í »çÀÌÆ®:
http://cgi.nessus.org/plugins/dump.php3?id=10484 |
| ÇØ°áÃ¥ |
UserDirÀ» "public_html/"À̳ª ȤÀº ´Ù¸¥ °ÍÀ¸·Î ¼³Á¤À» ¹Ù²Û´Ù. |
| °ü·Ã URL |
(CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
