> 5. Null session - information gathering with no right If you want to show some Win32 examples than use IIS. Just read MS00-078 and find corresponding securityfocus advisory. By sending URL to web server you can easily gain administrator privileges. But this has nothing to do with hacking or pen-testing - it's just a script kiddie attempt. Anyway it should work. Cheers, Aleksander Czarnowski ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
This archive was generated by hypermail 2b30 : Tue Oct 02 2001 - 12:02:13 PDT