Apes definition: http method called "PUT" that allows you to upload a file to a server, and if it is allowed you can upload whatever is in the body of the request to the website/server.
But I have a question about this. Is this turned off by default on servers? or does it need to be disallowed with some setting?
How common is it that this is enabled?
There is a tool in backtrack2 called HTTP PUT, its a perl script to make it easy to send a put request. can you tell if someone is vulnerable to this without actually attempting it?
Edited by on 17-08-08 03:42
Author
RE: HTTP PUT
Member
Posts: Location: Joined: 01.01.70 Rank: Guest
Posted on 17-08-08 07:53
It looks like it's turned on by default:
jonathan@jonnycake:~$ nc 127.0.0.1 80
PUT / HTTP/1.1
Host: 127.0.0.1
