GHDB « Hackers For Charity

GHDB

GHDB

Google Search: "ttawlogin.cgi/?action="

zoro25 rates this entry 2 out of 10.
Submitted: 2004-06-04 00:00:00
Added by: zoro25
Hits: 2078
Score: 2

Tarantella is a family of enterprise-class secure remote access software products. This Google-dork lists the login page for remote access to either the site server or another server within the target company. Tarantella also has a few security issues for a list of possible things that a malicous user could try to do, have a look at - http://www.tarantella.com/security/index.html An example of a malicous user could try is http://www.tarantella.com/security/bulletin-03.html the exploit isn't included in the User-Notice, but I've worked it out to be something like install directory/ttawebtop.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd


Comments: