[RE: NSFOCUS SA2001-02 : Microsoft IIS CGI Filename Decode Error V ulnerability]

From: e-Security Chap (e-securitychapat_private)
Date: Tue May 15 2001 - 15:42:10 PDT

Next message: Christopher Gerg: "RE: Windows 2000 .printer remote overflow proof of concept exploit...."

Previous message: Tobias J. Kreidl: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Reply: Curt Wilson: "IIS CGI Filename decode error = financial industry server vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

 hi folks,
 its just another expected iis bug. did anybody tried out the chance of
elevating privileges. i have tried the same techniques as in the iis unicode
bug, however i could not.
 any known ways to do that?
 regards

____________________________________________________________________
Get free email and a permanent address at http://www.netaddress.com/?N=1

Next message: Christopher Gerg: "RE: Windows 2000 .printer remote overflow proof of concept exploit...."
Previous message: Tobias J. Kreidl: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
Reply: Curt Wilson: "IIS CGI Filename decode error = financial industry server vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed May 16 2001 - 05:56:43 PDT