[ Advisory for NetCruiser 0.1.2.8 ] [ Netcruiser is made by Netcuiser Software ] [ Site: http://www.netcruiser-software.com ] [ by nemesystm of the DHC ] [ (http://dhcorp.cjb.net - [EMAIL PROTECTED]) ] [ ADV-0110 ] /-|=[explanation]=|-\ Netcruiser is a webserver. It has a simple path revealance bug. /-|=[who is vulnerable]=|-\ Anyone running NetCruiser 0.1.2.8 and prior. /-|=[testing it]=|-\ To test this vulnerability, try the following. www.server.com/con www.server.com/com2 www.server.com/com3 Other device names do not exhibit this type of behaviour. /-|=[fix]=|-\ Not known at the moment. Free, encrypted, secure Web-based email at www.hushmail.com
