Paper discussing how the the standard Apple Filing Protocol (AFP) does not use encryption to protect transfered data. Login credentials may be sent in cleartext or protected with one of several different hashed exchanges or Kerberos. There does not appear to have been any serious third-party security review of Apple's client or server implementations.
16feb9364a339129da505a3e12219691b666acf40377cf696c052a27ed62f5aaThere is a problem (actually several) with the "cgiwrap" program on Cobalt RaQ2 servers. This can be used to break other sites on a RaQ2 in several ways.
8105413f2c7ca65abc0278ea5141490cab31082aacbbd3cad6b8e1ff4e4a5ffb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed