Re: [ARL02-A07] ARSC Really Simple Chat System Information Path Disclosure Vulnerability

From: Manuel Kiessling (manuel@kiessling.net)
Date: Tue Mar 19 2002 - 09:16:49 CET

Previous message: Jose Romeo Vela: "Re: phpBB2 remote execution command (fwd)"
In reply to: Ahmet Sabri ALPER: "[ARL02-A07] ARSC Really Simple Chat System Information Path Disclosure Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello,

Ahmet Sabri ALPER wrote:
>
> A vulnerability exists in ARSC Really Simple Chat,
> which could allow any remote user to view the full
> path to the web root.
The fixed version is now available:

Via anonymous FTP:
ftp://manuel.kiessling.net/pub/arsc/arsc1.0.1p1.tar.gz
ftp://manuel.kiessling.net/pub/arsc/arsc1.0.1p1.zip

Via HTTP:
http://manuel.kiessling.net/projects/software/arsc/download/arsc1.0.1p1.tar.gz
http://manuel.kiessling.net/projects/software/arsc/download/arsc1.0.1p1.zip

From Sourceforge via HTTP:
http://prdownloads.sourceforge.net/arsc/arsc1.0.1p1.tar.gz
http://prdownloads.sourceforge.net/arsc/arsc1.0.1p1.zip

--
  Manuel Kiessling

Previous message: Jose Romeo Vela: "Re: phpBB2 remote execution command (fwd)"
In reply to: Ahmet Sabri ALPER: "[ARL02-A07] ARSC Really Simple Chat System Information Path Disclosure Vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Tue Mar 19 2002 - 17:16:10 CET