It's recommended to apply one of the workarounds described above as soon
as possible. Below are some conclusions I've gathered from testing this
on different systems.
Conclusions and real life results
----------------------------------
This attack can make the web server unresponsive in a short period of
time (under 2 minutes) with a very small number of requests.
Also, this attack doesn't leave any obvious tracks in the logs (only a
bunch of POST requests) and can be executed through a proxy server.
The HITB crew have put slides of our conference on their web site:
http://conference.hitb.org/hitbsecconf2010ams/materials/D1T1%20-%20Laurent%20Oudot%20-%20Web%20in%20the%20Middle.pdf
If you want to get more details & technical secrets from
TEHTRI-Security, feel free to join us "in real life" during our next
trainings sessions & talks, or feel free to contact us for specific
needs. We have public events planned next months (Asia, Europe).
Check-out our public agenda here:
http://www.tehtri-security.com/en/agenda.php
Contests:
Check out our contests page for details, but we are bringing some old
favorites and some new ones to the event this year. Deviant Ollam is
bringing us the Lockpicking Village thats been such a hit at Defcon
and Shmoocon in the past, as well as his newly devised Gringo Warrior
contest that pits your lockpicking skills in a 'real life' situation.
Nkryptr and Nous are also joining us with the Phreaking Challenge.
Come try out your phone phreaking skills and see how you measure up
Sponsors/Vendors:
Huge thanks to ASG, Microsoft, and William Knowles from ISN for
Topics for Build It! may include, but are not limited to, inventive
software & hardware SOLUTIONS in:
• Robotics and animatronics
• Advanced defensive technologies
• Software security concepts that work in real life
• Distributed computing
• Wireless networking (Zigbee, anyone?)
• Trusted computing
• RFID
Contests:
Check out our contests page for details, but we are bringing some old
favorites and some new ones to the event this year. Deviant Ollam is
bringing us the Lockpicking Village thats been such a hit at Defcon
and Shmoocon in the past, as well as his newly devised Gringo Warrior
contest that pits your lockpicking skills in a 'real life' situation.
Nkryptr and Nous are also joining us with the Phreaking Challenge.
Come try out your phone phreaking skills and see how you measure up
Sponsors/Vendors:
Huge thanks to ASG, Microsoft, and William Knowles from ISN for
Contests:
Check out our contests page for details, but we are bringing some old
favorites and some new ones to the event this year. Deviant Ollam is
bringing us the Lockpicking Village thats been such a hit at Defcon
and Shmoocon in the past, as well as his newly devised Gringo Warrior
contest that pits your lockpicking skills in a 'real life' situation.
Nkryptr and Nous are also joining us with the Phreaking Challenge.
Come try out your phone phreaking skills and see how you measure up
Sponsors/Vendors:
Huge thanks to ASG, Microsoft, and William Knowles from ISN for
# download : http://www.exjune.com/downloads/downloads/exJune_guestbook.asp
###########
# Vulnerable :
# database path : /admin/exdb.mdb
##########
# Real Life Example :
#
#
# OOO OOO OO OO OO
# OO O O O O
# O O O OO OO O O O O OO OOO OOOO OOOOO
read local files by using an URL like file:///etc/passwd. Therefore, if
the user can control the URL passed to curl_exec, in some cases (if the
content is echoed back) he can read local files.
While testing our AcuSensor technology on different applications, I’ve
found a real-life example of a vulnerable application. I’m talking
about Zen Cart.
Zen Cart is an open source online store management system. It is
PHP-based, using a MySQL database and HTML components. Support is
provided for several languages and currencies, and it is freely
