Re: ADSM NT Webshell Client

ADSM-L

[Top] [All Lists]

Re: ADSM NT Webshell Client

1997-08-21 12:27:08

Subject:	Re: ADSM NT Webshell Client
From:	Dave Barber <dbarber AT FORD DOT COM>
Date:	Thu, 21 Aug 1997 12:27:08 -0400

    A couple other issues with Webshell:

    A window resize in some browsers will report the form data, and
    execute the backup/restore _again_.

    A security hole we found: since webshell is a simple httpd
    it allows users to view any subdirectories of the defined mount
    point of the server, which allowed us to view the dsm.opt file
    which contained our password.

    Both of these issues were found on webshell 2.1.6, and if there is a new
    version they may not exist.

    Regards,
    David Barber

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
ADSM NT Webshell Client, Barton, Pina Re: ADSM NT Webshell Client, Daniel Thompson Re: ADSM NT Webshell Client, Brian Jones FW: ADSM NT Webshell Client, Barton, Pina Re: ADSM NT Webshell Client, Dave Barber <= Re: FW: ADSM NT Webshell Client, Sue Tull (email: suetull AT smed DOT com) Re: FW: ADSM NT Webshell Client, Keith Medcalf Re: ADSM NT Webshell Client, EXT Daniel Thompson [SMTP:thompsod

Previous by Date:	FW: ADSM NT Webshell Client, Barton, Pina
Next by Date:	3590: tape-to-tape transfer rates, Thomas A. La Porte
Previous by Thread:	FW: ADSM NT Webshell Client, Barton, Pina
Next by Thread:	Re: FW: ADSM NT Webshell Client, Sue Tull (email: suetull AT smed DOT com)
Indexes:	[Date] [Thread] [Top] [All Lists]