Hi all!! I tried all 3 exploit's that can be found. First what I did is trying webexplt.pl which reported IIS servers vulnerable. After that I tried iishack2000 which did place eeye's txt file in C:\ Than I tried jill with nc and it worked so I got reverse cmd shell. Well, I had to make a little modification to jill.c source. All this stuff I tried from linux and windows environment. For windows I made *.exe files with cygwin. After I patched servers, webexplt.pl was still reporting servers vulnerable but I was unable to place eeye's txt file on the server via iishack2000 and I was unable to get reverse cmd shell via jill. Nether from linux or windows. My question is did anyone had same experience? Thnx in advance. Best regards.
This archive was generated by hypermail 2b30 : Fri May 11 2001 - 08:53:55 PDT