Linked by David Adams on Fri 25th Sep 2009 14:50 UTC, submitted by TommyCarlier
From Smashing Magazine: "A few months ago, Anton Isaykin, in collaboration with the company 2comrades, found a huge vulnerability that is quite typical of big projects (we do not name names here). To test it, they obtained the file structures and even the source code of about 3320 Russian websites and some major English-language websites. Serious vulnerabilities like this aren't supposed to exist nowadays. Every serious or visible exploit is found and fixed quickly. But here we will show you something simple and ordinary yet very dangerous."
Permalink for comment 386262
To read all comments associated with this story, please click here.
To read all comments associated with this story, please click here.
Member since:
2005-12-31
[code]
ln -s /etc/passwd /var/www/passwd
[/code]
* submit news to osnews:
SERIOUS VULNERABILITY FOUND IN LN! OMG!!!1!11oneone
Seriously - this is what happens when every "news" site around links any news item that sounds "newsworthy" without checking the content or even trying to understand what the real issue is.
Edited 2009-09-25 16:35 UTC