IIS Internal IP disclosure

From: Alex Zimin (alexat_private)
Date: Tue Feb 25 2003 - 14:54:58 PST

Next message: Alex Zimin: "Re: IIS Internal IP disclosure"

Previous message: Michel Arboi: "ipswitch IMail web interface"
Next in thread: Alex Zimin: "Re: IIS Internal IP disclosure"
Reply: Alex Zimin: "Re: IIS Internal IP disclosure"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This plugin should detect IIS internal IP disclosure vulnerability.
This is the first Nessus plugin I wrote, so please don't expect it to be
perfect.

This plugin should follow the vulnerability exploit discussion found here:
http://archives.neohapsis.com/archives/ntbugtraq/2000-q3/0025.html

CVE: CAN-2000-0649
BID: 1499

iis_nat.nasl does very similar check, but it relies only on the http
banner captured during scan.

Maybe these two plugins should be combined and enhanced for better
vulnerability detection.

Alex Zimin
alexat_private

text/plain attachment: IIS_Internal_IP.nasl

Next message: Alex Zimin: "Re: IIS Internal IP disclosure"
Previous message: Michel Arboi: "ipswitch IMail web interface"
Next in thread: Alex Zimin: "Re: IIS Internal IP disclosure"
Reply: Alex Zimin: "Re: IIS Internal IP disclosure"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Feb 25 2003 - 14:50:00 PST