Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Web-App-Sec
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Webappsec] script inside .txt file

from [Stefano Di Paola] Network Security [Permanent Link]
Subject: Re: [Webappsec] script inside .txt file
Date: Wed, 25 Apr 2007 10:03:02 +0200 
Hi Prashant,

AFAIK there's no solution with FF as it uses Content-Type header to get
the right plugin/parser.

You could try to rename abc.txt to abc.php%00.txt (or whatever extension
the server will interpret) and upload it.
When it'll be downloaded, %00 will become a null char so the latter .txt
could be discarded resulting in a abc.php.

If it doesn't works try with double encoding. abc.php%2500.txt just in
case multiple layers/functions are present in the data flow.


Regards
Stefano

Il giorno mar, 24/04/2007 alle 23.19 -0700, prashant k v ha scritto:

Hello,
 
i have a web site with upload fucntionality, users can use site to
upload .txt files.
user can access files directly eg:- www.mysite.com/abc.txt
 
the problem is, if there is  a text like
<script>alert('hello');</script> in tht .txt file and if someone opens
the file in IE the script gets executed, which should not happen.
 
i am using Apache http server 2.0.59 and IE 7. this problem dosen
occur in mozilla, <script>alert('hello');</script> is displayed as it
is
 
can anyone help me solve this 
 
Regards
Prashant
 

______________________________________________________________________
Ahhh...imagining that irresistible "new car" smell?
Check out new cars at Yahoo! Autos. 
_______________________________________________
Webappsec mailing list
Webappsec@lists.owasp.org
http://lists.owasp.org/mailman/listinfo/webappsec

-- 
...oOOo...oOOo....
Stefano Di Paola
Software & Security Engineer

Web: www.wisec.it
..................

Attachment: signature.asc
Description: Questa =?ISO-8859-1?Q?=E8?= una parte del messaggio firmata digitalmente

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Webappsec] script inside .txt file, Josh Zlatin-Amishav
Next by Date:  IE 7 and Firefox Browsers Digest Authentication Request Splitting, Stefano Di Paola
Previous by Thread:  Re: [Webappsec] script inside .txt file, Josh Zlatin-Amishav
Next by Thread:  IE 7 and Firefox Browsers Digest Authentication Request Splitting, Stefano Di Paola
Indexes:  [Date] [Thread] [Top] [All Lists]