Tag: DotDotPwn

• Directory Traversal to Root

  I’ve had some success in the past when finding directory traversal vulnerabilities on Linux/Unix hosts and thought I would share a little post on what I’ve found. The vulnerabilities are often found in the unauthenticated portions (convenient) of management applications such as Webmin or ColdFusion and are frequently running with elevated privileges. The first step…

  Josh Berry

  December 28, 2013

  Linux, Metasploit, Penetration Testing, Python, Unix

  DotDotPwn, Linux, Metasploit, Panoptic, Python, Unix