On 22/2/06 10:42, in article 43FC4028.90207 at karan.org, "Karanbir Singh" <mail-lists at karan.org> wrote: > > that script seems to be a brain dead testing setup - its just checking > for the version numbers and not the vuln's themselves. Can you actually > recreate any of these exploits ? No ( I though the directory traversal one did; but I'm wrong ). Suggests strongly this tool does indeed just check version numbers. Thanks -- takeme2your at rocketmail.com U n d e r a c h i e v e r