SPIKE version released that detects .HTR and ISAPI overflows (see spike.sourceforge.net)

From: Dave Aitel (daitelat_private)
Date: Wed Apr 10 2002 - 08:24:18 PDT

Next message: Peter Gründl: "KPMG-2002008: Watchguard SOHO IP Restrictions Flaw"

Previous message: Thor Larholm: "IIS allows universal CrossSiteScripting"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

At long last, SPIKE is once again allowed to be public. This is the
fuzzer creation kit I wrote that finds the .HTR and ISAPI overflow
vulnerabilities discussed here:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS02-018.asp
and
here: http://www.atstake.com/research/advisories
(The Microsoft advisory currently misattributes this vulnerability to
Chris Wysopal instead of me :<.)

Anyways, the new SPIKE is available (in source code form only) from
spike.sourceforge.net, as is the rather extensive Changelog. It's pretty
useful for generic web app auditing as well now.

Yes, SPIKE is still GPL.

Dave Aitel

Next message: Peter Gründl: "KPMG-2002008: Watchguard SOHO IP Restrictions Flaw"
Previous message: Thor Larholm: "IIS allows universal CrossSiteScripting"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Apr 10 2002 - 13:47:39 PDT