Re: IIS Seperate Partition?

From: Bernard (qbernard_at_hotmail.com.discuss)
Date: 06/01/04

• Next message: Simon: "Re: Access Denied"
• Previous message: Paul Lynch: "Re: Secure and non-secure message"
• In reply to: Paul Lynch: "Re: IIS Seperate Partition?"
• Next in thread: John Alderson: "Re: IIS Seperate Partition?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Tue, 1 Jun 2004 17:20:29 +0800

I see ! I know now. but it is using two exploits then.
it's using a)directory travese and b)buffer overflow.

a buffer overflow could be using directory travesal or not using it, to
overrun the program buffer.

-- 
Regards,
Bernard Cheah
http://www.tryiis.com/
http://support.microsoft.com/
http://www.msmvps.com/bernard/
"Paul Lynch" <paul.lynch@nospam.com> wrote in message
news:b2hob01a5t0p9s98dmkocfpmrf8adqncdq@4ax.com...
> On Tue, 1 Jun 2004 16:08:02 +0800, "Bernard"
> <qbernard@hotmail.com.discuss> wrote:
>
> >Errr.... not sure. but I guess no ?
> >As it's two different techniques, and the former mainly execute arbitary
> >codes to attack. which does not really involve in directory travese ?
>
> The Nimda worm (which was essentially a directory traversal attack)
> made use of the buffer overflow vulnerabilities previously exploited
> by the Code Red II worm.
>
>
> Regards,
>
> Paul Lynch
> MCSE

---

• Next message: Simon: "Re: Access Denied"
• Previous message: Paul Lynch: "Re: Secure and non-secure message"
• In reply to: Paul Lynch: "Re: IIS Seperate Partition?"
• Next in thread: John Alderson: "Re: IIS Seperate Partition?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(15)