Re: IIS Internal IP disclosure

From: H D Moore (hdmat_private)
Date: Wed Feb 26 2003 - 18:04:02 PST

Next message: Paul Johnston: "new magic strings for no404.nasl"

Previous message: John Q. Public: "RE: Send control character in telnet from NASL?"
In reply to: Renaud Deraison: "Re: IIS Internal IP disclosure"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Forgot to submit this one, Geoff Humes wrote it a while back. It uses the 
directory scanner KB data and does some sanity checking of the 
address/host. The output probably needs to be modified to report standard 
Nessus results though...

-HD

On Wednesday 26 February 2003 02:23 pm, Renaud Deraison wrote:
> > This script is not something new, but rather an addition to an
> > existing iis_nat script to increase Nessus chances of detecting
> > internal IIS IP address which is a security risk and where
> > iis_nat.nasl will miss find it.
>
> Then I'd prefer you to send a patch for the iis_nat.nasl plugin so that
> it does a proper check please.
>
>
> 				-- Renaud

text/plain attachment: DDI_new_iis_nat.nasl

Next message: Paul Johnston: "new magic strings for no404.nasl"
Previous message: John Q. Public: "RE: Send control character in telnet from NASL?"
In reply to: Renaud Deraison: "Re: IIS Internal IP disclosure"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Feb 26 2003 - 18:04:57 PST