CVE-2007-1860: mod_jk double-decoding


Make sure you give at least 512MB of RAM to the VM!
This exercise covers the exploitation of CVE-2007-1860. This vulnerability allows an attacker to gain access to unaccessible pages using crafted requests. This is a common trick that a lot of testers miss.

ISO

The ISO for this exercise can be downloaded by clicking here (191MB).


Course

You can access the course for this exercise by clicking here

Online

More details on how to access the online version of this exercise can be found here

Videos

More details on how to access the videos for this exercise can be found here


White Badge

This exercise is part of the White Badge.