3rd Oct 2002 [SBWID-5728]
COMMAND
Citrix Published Application Brute Forcer
SYSTEMS AFFECTED
Citrix
PROBLEM
wirepair [wirepair@roguemail.net] says :
This is a new design flaw that I discovered when trying to break the
'only allow published applications' option. This will attempt to brute
force the application names that are published by looking for a
specific return datagram. All other details are in the README. This
file can be downloaded at :
http://sh0dan.org/files/pubappbrute.tar.gz
It also includes a template pubapp file which contains common published
applications. Enjoy.
--_===7987535====gator.darkhorse.com===_
Content-Type: application/x-gzip
Content-Disposition: attachment;
filename="pubappbrute.tar.gz"
Content-Transfer-Encoding: base64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--_===7987535====gator.darkhorse.com===_--
SOLUTION
?
TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986- AOH
