Nessus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Plugin 10766 - Apache Remote User Enumeration

from [Jeff Tate] [Permanent Link][Original]
To: nessus@list.nessus.org
Subject: Plugin 10766 - Apache Remote User Enumeration
From: Jeff Tate <jstate_90@yahoo.com>
Date: Wed, 10 Jan 2007 08:51:46 -0800 (PST)
Delivered-to: sp-com-lists@consult.net
Delivered-to: nessus-list1@securepoint.com
Delivered-to: nessus@list.nessus.org
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=X-YMail-OSG:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=pQbc9JuVl2n6IR9U5pIZcnVq29ZJ8sbdOy2bdxP6NM8kA13T095lzphKIgRCeSjvagO9GzA2Mi9wwrW3gnY2JuctwCoHPE9/Hq5iB3TtWw6VtjAXIsMymgqGep+kkAwdcVFv8+sJtECPj6RpO7Sit8836ceuOXnln4XHXGrdC3U=;
List-archive: <http://mail.nessus.org/pipermail/nessus>
List-help: <mailto:nessus-request@list.nessus.org?subject=help>
List-id: Discussion of Nessus software <nessus.list.nessus.org>
List-post: <mailto:nessus@list.nessus.org>
List-subscribe: <http://mail.nessus.org/mailman/listinfo/nessus>, <mailto:nessus-request@list.nessus.org?subject=subscribe>
List-unsubscribe: <http://mail.nessus.org/mailman/listinfo/nessus>, <mailto:nessus-request@list.nessus.org?subject=unsubscribe>
Sender: nessus-bounces@list.nessus.org 
I'm having trouble verifying findings from this
plugin. It is getting triggered agaist a few
webservers, but when I try to verify by using a
webbrowser to request valid and invalid usernames, the
responses are the same. I've also examine packet
captures, and they look the same also. The only real
difference in the error pages (and in the pcap) is the
username that I requested.

What part of the response is retrieved and evaluated
by:
 res = http_keepalive_send_recv(port:port, data:req);

It appears that Apache Tomcat servers are triggering
this.

running Nessus 3.0.2 on Suse.

Thanks

Jeff


 
____________________________________________________________________________________
Yahoo! Music Unlimited
Access over 1 million songs.
http://music.yahoo.com/unlimited
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  smb_enum_services.nasl, Crone Willis, Kelly R
Next by Date:  Re: Plugin 10766 - Apache Remote User Enumeration, George A. Theall
Previous by Thread:  smb_enum_services.nasl, Crone Willis, Kelly R
Next by Thread:  Re: Plugin 10766 - Apache Remote User Enumeration, George A. Theall
Indexes:  [Date] [Thread] [Top] [All Lists]