|
|
|
|
|
|
by BobVerg
4586 days ago
|
|
|
Ok. To exploit any vulnerability the attacker have to do something. It's just obvious. I don't understand what you're trying to make clear. > and attacker handcraft an http request packet, bypassing encode and sanity checking which is required in most HTTP client implementations Well, it's not something hard to do. You don't have to dwell on this. To talk HTTP you don't even need HTTP client (sic!). Telnet or netcat can be easily used instead. I usually use them while configuring web-servers, most admins and devs usually do so. |
|
|