IIS/WebDav Exploit List

From: Joe Stewart (jstewartat_private)
Date: Tue May 13 2003 - 06:31:38 PDT

Next message: Joe Stewart: "IIS/WebDav Exploit List"

Previous message: eden.akhaviat_private: "Re: smsx.exe?"
Next in thread: Joe Stewart: "IIS/WebDav Exploit List"
Reply: kyleat_private: "RE: IIS/WebDav Exploit List"
Reply: kyleat_private: "RE: IIS/WebDav Exploit List"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I have created a page describing the various WebDav exploits and exploit
kits I have come across so far, along with Snort signatures to detect each
one. If anyone knows of any other unique exploits for the ntdll.dll/WebDav 
IIS vulnerability, please send me the source/binary or a link so I can catalog 
it here:

http://www.lurhq.com/webdav.html

-Joe
 
-- 
Joe Stewart, GCIH 
Senior Intrusion Analyst
LURHQ Corporation
http://www.lurhq.com/

Next message: Joe Stewart: "IIS/WebDav Exploit List"
Previous message: eden.akhaviat_private: "Re: smsx.exe?"
Next in thread: Joe Stewart: "IIS/WebDav Exploit List"
Reply: kyleat_private: "RE: IIS/WebDav Exploit List"
Reply: kyleat_private: "RE: IIS/WebDav Exploit List"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue May 13 2003 - 09:47:12 PDT