WebDav Exploit ffs

From: Rafael Nuñez (rnunezat_private)
Date: Mon Mar 24 2003 - 10:57:13 PST

Next message: securityat_private: "Security Update: [CSSA-2003-SCO.7] UnixWare 7.1.1 Open UNIX 8.0.0 : Several vulnerabilities in XDR/RPC routines"

Previous message: EnGarde Secure Linux: "[ESA-20030324-012] 'MySQL' root exploit."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I've been receiving a bunch of emails concerning if the exploit that I sent
to the list (iis_txt.c ) was focus on WebDav Vuln.. Of course Not (was a
totally different one, based on the old *.asp like iistart.asp).  If David
Litchfield read the 1st one he prolly cried.

Regarding this I'm sending the WebDav exploit tested 100% by me

Best Regards

Note: don't ask for the binary one.. Please compile yourself.

-----------------------------------------------------
Rafael Núñez
Senior Research Scientist
Latin American Security & Intelligence Operations
Scientech de Venezuela
-----------------------------------------------------
[w] http://www.scientech.com.ve
[e] rnunezat_private
----------------------------------------------------
Tlf.:(58-212) 952.42.66
Fax:(58-212) 951.36.35
----------------------------------------------------

application/octet-stream attachment: wbr.c

Next message: securityat_private: "Security Update: [CSSA-2003-SCO.7] UnixWare 7.1.1 Open UNIX 8.0.0 : Several vulnerabilities in XDR/RPC routines"
Previous message: EnGarde Secure Linux: "[ESA-20030324-012] 'MySQL' root exploit."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Mar 24 2003 - 11:11:48 PST