IIS 5.0 WebDAV -Proof of concept-. Fully documented.

From: Roman Medina (roman@rs-labs.com)
Date: 03/25/03

Next message: Mandrake Linux Security Team: "MDKSA-2003:037 - Updated glibc packages fix vulnerabilities in RPC XDR decoder"

Previous message: Tibor Pittich: "Re: PHPNuke viewpage.php and another SQL injections"
Next in thread: Dave Aitel: "Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented."
Reply: Dave Aitel: "Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented."
Reply: Martin Vuagnoux: "TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Roman Medina <roman@rs-labs.com>
To: bugtraq@securityfocus.com
Date: Tue, 25 Mar 2003 19:25:48 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

I wrote another exploit for the nt.dll bug some days ago.
Explanation and a little documentation is included in the source
file. It compiles in Linux/gcc without any error.

http://www.rs-labs.com/exploitsntools/rs_iis.c
[19.5 kbytes]

Regards,
--Roman

- --
PGP Fingerprint:
09BB EFCD 21ED 4E79 25FB 29E1 E47F 8A7D EAD5 6742
[Key ID: 0xEAD56742. Available at KeyServ]

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>

iQA/AwUBPoB8TOR/in3q1WdCEQLvqgCeLnYnMNDRQggwSn3hEe5YKKPLPl8AnR6K
YV1r+FKjoQmG+nPN0BsRv6jn
=Td4v
-----END PGP SIGNATURE-----

application/octet-stream attachment: rs_iis.c

Next message: Mandrake Linux Security Team: "MDKSA-2003:037 - Updated glibc packages fix vulnerabilities in RPC XDR decoder"

Previous message: Tibor Pittich: "Re: PHPNuke viewpage.php and another SQL injections"
Next in thread: Dave Aitel: "Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented."
Reply: Dave Aitel: "Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented."
Reply: Martin Vuagnoux: "TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Weekly Python Patch/Bug Summary
... Patch / Bug Summary ... Help with Python codebase ... Update to Macintosh library documentation ... Segfaults on memory error ...
(comp.lang.python)
Weekly Python Patch/Bug Summary
... Patch / Bug Summary ... typo in liblocale.tex ... subprocess documentation ... Registry not updated by 2.4b1 installer ...
(comp.lang.python)
Re: Tired of 100s of stupid Getter/Setter methods
... > reading the documentation that the library developer wrote. ... ability to become familiar with an API. ... Given the choice between finding out about a bug as I'm writing the ... say about a language that's one of the more readable that I work in. ...
(comp.lang.java.programmer)
Re: Simple IF statement
... The coding that Christopher Hulbert ... Thanks for your explanation as well. ... I had seen in Excel and I used a non-official Matlab manual ... > documentation for the IF function: ...
(comp.soft-sys.matlab)
Re: strtomember and strtoset bug with hyphen
... I fully agree with you that the documentation should've been much clearer in ... As I explained, this cannot be considered as bug, because "-" and other ... reserved keyword as the member name without quoting it. ... >> You should either quote the special characters, ...
(microsoft.public.sqlserver.olap)