I just found a site, quite by random, that is vulnerable to remote command execution through a finger.cgi gateway. This site is subdomain at a major engineering college in the US and no, I didn't find it with Google Hacking. ... ... [SMACK] Its #$&*ing 2007! Why the #$&* are you using CGI!?! Bad Monkey! |