[framework] Lighttpd header folding exploit
Abhisek Datta
abhisek.datta at gmail.com
Thu Oct 4 09:11:19 CDT 2007
Hi,
I have playing around with this bug for few weeks after it was made
public. The exploit is not reliable but "works in my box" certified at
least. Even after trying to make it a bit generic and work across
distros and compiles, don't think it is much reliable.
Attached is the exploit for people to play around and improve upon.
Although the bug is old, but surely its an interesting one.
-abhisek
-------------- next part --------------
A non-text attachment was scrubbed...
Name: lighttpd_header_folding.rb
Type: application/x-ruby
Size: 7220 bytes
Desc: not available
Url : http://spool.metasploit.com/pipermail/framework/attachments/20071004/38855897/attachment.bin
More information about the framework
mailing list