RE: Microsoft IIS Authentication Manager Account Conformation Vuln?

From: Russ (Russ.Cooper_at_rc.on.ca)
Date: 05/06/03

Next message: Martin Schulze: "[SECURITY] [DSA 300-1] New Balsa packages fix buffer overflow"

Previous message: Matt Zimmerman: "[SECURITY] [DSA 299-1] New leksbot packages fix improper setuid-root execution"
Maybe in reply to: JeiAr: "Microsoft IIS Authentication Manager Account Conformation Vuln?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 6 May 2003 11:33:00 -0400
To: "JeiAr" <jeiar@kmfms.com>, <bugtraq@securityfocus.com>

First described by mnemonix on Febuary 24, 1999, in NTBugtraq post;

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9902&L=ntbugtraq&F=P&S=&P=5572
(URL is wrapped to more than one line, you must reconnect the pieces for it to work properly)

Cheers,
Russ - NTBugtraq Editor

-----Original Message-----
From: JeiAr [mailto:jeiar@kmfms.com]
Sent: Saturday, May 03, 2003 3:58 AM
To: bugtraq@securityfocus.com
Subject: Microsoft IIS Authentication Manager Account Conformation Vuln?

Let me start off by saying that im not sure if this already exists,

but i have never heard of it and neither has anyone i asked.
<snip>

Next message: Martin Schulze: "[SECURITY] [DSA 300-1] New Balsa packages fix buffer overflow"

Previous message: Matt Zimmerman: "[SECURITY] [DSA 299-1] New leksbot packages fix improper setuid-root execution"
Maybe in reply to: JeiAr: "Microsoft IIS Authentication Manager Account Conformation Vuln?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]