asp restriction configuration weaknesses
From: roberto unbaggi (robertounbaggi_at_hotmail.com)
Date: 04/27/04
- Previous message: Anders Thulin: "Re: Questions: nmap, nessus unreliability, setting up a packet capture box, using Impacket"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: pen-test@securityfocus.com Date: Tue, 27 Apr 2004 11:46:54 +0000
hi list
i intend to conduct a pen-test on our webservers the next days. the focus
of the test lies on configuration restrictions of the scripting mechanisms
like
php, cgi, ssi and asp and how to read, write or execute files on the system
by
using these embedded scripting languages.
because im not so familiar with asp and the windows environment, i would
really
appreciate any hint how to procede to spot the potential weak points
(filesystem access r/w/x)
abusable with asp.
regards
roberto
_________________________________________________________________
MSN Messenger - sehen, welche Freunde online sind!
http://www.msn.de/messenger Jetzt kostenlos downloaden und mitmachen!
------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------
- Previous message: Anders Thulin: "Re: Questions: nmap, nessus unreliability, setting up a packet capture box, using Impacket"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
