IIS 5.0 WebDAV -Proof of concept-. Fully documented.

• Previous message: Daniel Ahlberg: "GLSA: stunnel (200303-24)"
• Next in thread: Dave Aitel: "Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented."
• Reply: Dave Aitel: "Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented."
• Reply: Martin Vuagnoux: "TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit"
• Reply: Martin Vuagnoux: "TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 Hi,

 I wrote another exploit for the nt.dll bug some days ago.
Explanation and a little documentation is included in the source
file. It compiles in Linux/gcc without any error.

http://www.rs-labs.com/exploitsntools/rs_iis.c
[19.5 kbytes]

 Regards,
 --Roman

- --
PGP Fingerprint:
09BB EFCD 21ED 4E79 25FB  29E1 E47F 8A7D EAD5 6742
[Key ID: 0xEAD56742. Available at KeyServ]

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>

iQA/AwUBPoB8TOR/in3q1WdCEQLvqgCeLnYnMNDRQggwSn3hEe5YKKPLPl8AnR6K
YV1r+FKjoQmG+nPN0BsRv6jn
=Td4v
-----END PGP SIGNATURE-----

• application/octet-stream attachment: rs_iis.c

• Next message: Mandrake Linux Security Team: "MDKSA-2003:037 - Updated glibc packages fix vulnerabilities in RPC XDR decoder"
• Previous message: Daniel Ahlberg: "GLSA: stunnel (200303-24)"
• Next in thread: Dave Aitel: "Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented."
• Reply: Dave Aitel: "Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented."
• Reply: Martin Vuagnoux: "TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit"
• Reply: Martin Vuagnoux: "TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Mar 25 2003 - 12:10:09 PST