RE: Microsoft IIS CGI Filename Decode Error Vulnerability

From: d0gman ! (d0gmanat_private)
Date: Tue May 15 2001 - 04:27:39 PDT

Next message: Tobias J. Kreidl: "Re: Solaris /usr/bin/mailx exploit (SPARC)"

Previous message: Leif Jakob: "Test for last IIS-escape vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The attached UXE file, for use with TWWSCAN/TUXE Expert Scanner (available 
from: http://search.iland.co.kr) will scan IIS 4 and 5 servers for the old 
Unicode vulnerability and the new Filename Decode Error vulnerability.

Usage: tuxe target_server port iisuc.uxe

Cheers

d0gman


_________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.

text/plain attachment: iisuc.uxe

Next message: Tobias J. Kreidl: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Previous message: Leif Jakob: "Test for last IIS-escape vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed May 16 2001 - 05:13:12 PDT