> Solution: > > Patch dcboard.cgi to remove double dots and poison nulls > > Disable uploading Note that DCScripts released a security patch on 3/31/2001 designed to address these issues: http://www.dcscripts.com/FAQ/sec_2001_03_31.html -MZ
- qDefense Advisory: DCForum allows remote read/write/exec... Franklin DeMatto
- Re: qDefense Advisory: DCForum allows remote read/w... Wolfgang Wiese
- Re: qDefense Advisory: DCForum allows remote re... Franklin DeMatto
- Re: qDefense Advisory: DCForum allows remot... [EMAIL PROTECTED]
- MegaZone
