Re: IIS Decode

From: Brian (bsshuhartat_private)
Date: Thu May 17 2001 - 09:12:46 PDT

Next message: Caldera Support Information: "Security update: [CSSA-2001-17.0] gnupg - private key retrieval vulnerability"

Previous message: Greg A. Woods: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
In reply to: Michael Vassiliadis: "IIS Decode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Yep, it works on IIS 3.0.  At least the server I tested.  I was verifing the
vulnerability for a friend at a remote site, so I don't know what patch
level of the system.

bs

----- Original Message -----
From: "Michael Vassiliadis" <mikvasat_private>
To: <bugtraqat_private>
Sent: Wednesday, May 16, 2001 11:52 PM
Subject: IIS Decode

> There has been so much talk about this new "diamond" from m$, but NOONE
> discovered that this also works on IIS 3!!!.....
>
> Please confirm...
>

Next message: Caldera Support Information: "Security update: [CSSA-2001-17.0] gnupg - private key retrieval vulnerability"
Previous message: Greg A. Woods: "Re: Solaris /usr/bin/mailx exploit (SPARC)"
In reply to: Michael Vassiliadis: "IIS Decode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri May 18 2001 - 00:36:22 PDT