Ch. Muhammad Osama, an independent vulnerability researcher has discovered a OPTIONS Method Vulnerability\u00a0in C2FO\u00a0website www.c2fo.com, which can be exploited by an attacker to gain additional information about the target system.<\/p>\n
OPTIONS Method\u00a0:-<\/strong><\/p>\n HTTP offers a number of methods that can be used to perform actions on the web server. Many of theses methods are designed to aid developers in deploying and testing HTTP applications. These HTTP methods can be used for nefarious purposes if the web server is misconfigured. Additionally, Cross Site Tracing (XST), a form of cross site scripting using the server’s HTTP TRACE method, is examined. Some of these methods can potentially pose a security risk for a web application, as they allow an attacker to modify the files stored on the web server and, in some scenarios, steal the credentials of legitimate users. More specifically, the methods that should be disabled are the following:<\/p>\n If an application needs one or more of these methods, such as REST Web Services (which may require PUT or DELETE), it is important to check that their usage is properly limited to trusted users and safe conditions.<\/p>\n Proof of Concept :-<\/strong><\/p>\n Request:- Response:- Conclusion :-<\/strong><\/p>\n This vulnerability has been confirmed and patched by C2FO\u00a0Security Team. I would like to thank them for their quick response to my report.<\/p>\n Status : Fixed!<\/strong> Ch. Muhammad Osama, an independent vulnerability researcher has discovered a OPTIONS Method Vulnerability\u00a0in C2FO\u00a0website www.c2fo.com, which can be exploited by an attacker to gain additional information about the target system. OPTIONS Method\u00a0:- HTTP offers a number of methods that can be used to perform actions on the web server. Many […]<\/p>\n","protected":false},"author":1,"featured_media":26,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[11,12,6,8],"class_list":["post-25","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-poc","tag-c2fo","tag-options-method","tag-poc","tag-vulnerability"],"yoast_head":"\n
\nWhile GET and POST are by far the most common methods that are used to access information provided by a web server, the Hypertext Transfer Protocol (HTTP) allows several other (and somewhat less known) methods. RFC 2616 (which describes HTTP version 1.1 which is the standard today) defines the following eight methods:<\/p>\n\n
\n
\nOPTIONS \/wp-content\/themes\/theme\/js\/ HTTP\/1.1
\nHost: c2fo.com
\nUser-Agent: Mozilla\/5.0 (Windows NT 6.1; WOW64; rv:28.0) Gecko\/20100101 Firefox\/28.0
\nAccept: text\/html,application\/xhtml+xml,application\/xml;q=0.9,*\/*;q=0.8
\nAccept-Language: en-US,en;q=0.5
\nAccept-Encoding: gzip, deflate
\nConnection: keep-alive<\/p>\n
\nHTTP\/1.1 200 OK
\nConnection: keep-alive
\nDate: Wed, 02 Apr 2014 17:21:31 GMT
\nServer: WP Engine\/6.0.2
\nKeep-Alive: timeout=20
\nX-Type: default
\nX-Frame-Options: SAMEORIGIN
\nAllow: GET,HEAD,POST,OPTIONS,TRACE
\nContent-Length: 0
\nContent-Type: httpd\/unix-directory<\/p>\n
\nHall of Fame : Yes!<\/strong>
\nBounty: No!<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"