Task 1

The system is located in the /LOCALHOST/ZADACHI/1/ folder on the CD-ROM. It is available at http://localhost/zadachi/1/index.php if the HTTP server is installed.

The system is a set of scripts that upload files onto the server and read the contents of the files. To upload a file, a password is required. You don't know the password.

The system allows users to upload files no larger than 10 bytes. The files are uploaded to the . /upload/ directory, and access to this folder using HTTP is restricted in the . htaccess file. You cannot access the files and the scripts directly.

Your goal is to upload a 1-KB file and circumvent (or disable) the password check.

Hacker Web Exploition Uncovered
Hacker Web Exploition Uncovered
ISBN: 1931769494
Year: 2005
Pages: 77

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net