Re[2]: directory traversal

From: Strumpf Noir Society (vuln-devat_private)
Date: Tue Feb 05 2002 - 10:00:29 PST

Next message: Hybrid: "Re: mIRC Buffer Overflow"

Previous message: Arta: "Re: Reported Kazaa and Morpheus vulnerabilities"
Next in thread: Jim Nanney: "Re: directory traversal"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi,

Ehm, oops, sorry. A bit more info about the settings would be
appropiate. I'm not looking at IIS specifically, it's a third-party
product. It does run a server (a propriety FTP server) and this server
is vulnerable to the triple-dot thing. But ONLY when running Win2k/NT.

Thejian

A> If i understand the question correctly, the reason would be that the
A> directory traversal problem was an exploit in IIS - which only runs on NT.
A> The MS webserver for 9x systems is PWS which I don't think is vulnerable in
A> the same way.

A> Harry M




-- 
Best regards,
 Strumpf Noir Society                            mailto:vuln-devat_private


"Mere accumulation of observational evidence is not proof."

-- Death, "The Hogfather"

Next message: Hybrid: "Re: mIRC Buffer Overflow"
Previous message: Arta: "Re: Reported Kazaa and Morpheus vulnerabilities"
Next in thread: Jim Nanney: "Re: directory traversal"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Feb 05 2002 - 10:19:15 PST