[Nikto-discuss] Oh Dear!
David Lodge
dave at cirt.net
Tue Sep 29 06:30:15 UTC 2009
On Tue, 2009-09-29 at 13:15 +1000, David Klein wrote:
> Integer overflow in hexadecimal number at
> /pentest/scanners/nikto/plugins/nikto_headers.plugin line 203, <IN> line
> 279.
That's really not good - which version are you using? According to the
latest 2.1.0, that line is:
$reportnum++;
Which has the potential to overflow, but only if something has gone
really pear shaped. And chance of a -D d dump of this session (or at
least see the headers it produces for a GET /)
Ta
dave
More information about the Nikto-discuss
mailing list