Another unicode's bug question
From: Phuong Nguyen (dphuong@yahoo.com)Date: 07/23/01
- Previous message: Art Norman: "Hardening of three tier application environment"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <20010723010514.2073.qmail@web13405.mail.yahoo.com> Date: Sun, 22 Jul 2001 18:05:14 -0700 (PDT) From: Phuong Nguyen <dphuong@yahoo.com> Subject: Another unicode's bug question To: bugtraq@securityfocus.com
Hi guys
thanx so much for replying me about where to attend
for Infosec degree yeah i have another question that i
try to find an answer, my server is exploitable by
unicode method, but wat makes me really wonder is for
example that attacker uses that bug, then wat can he
do coz he only has "iis guest right" to my server and
i restricted access to my files (admin) and sam files
even repair files, so i mean yeah he can deface my
site but how he's gonna obtain my database, like
copying file, for viewing sensitive files and stuff
coz i'm pretty sure that he'll get access denied,
humm that's been on my mind for few days using trojans
humm don't think so , and i'm using win2k box, thanx
you guys so much for reading, yeah by the way is it
true that the bug printer overflow that eeye discover
or something only vulnerable to english version of iis
rite ?
phuong
__________________________________________________
Do You Yahoo!?
Make international calls for as low as $.04/minute with Yahoo! Messenger
http://phonecard.yahoo.com/
- Previous message: Art Norman: "Hardening of three tier application environment"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
