FSO exploit
From: Savas (Savas_at_discussions.microsoft.com)
Date: 04/20/05
- Next message: Savas: "Re: IIS folder structure and security."
- Previous message: Jason Brown [MSFT]: "Re: SelfSSL Utility - Not working?"
- Next in thread: Ken Schaefer: "Re: FSO exploit"
- Reply: Ken Schaefer: "Re: FSO exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 20 Apr 2005 00:26:02 -0700
Hi,
My server was hacked over this weekend using the FSO exploit. It is sad that
by uploading one simple asp file to one website in a server, hacker can
access the whole machine, both drive C and drive D. Well I should have played
around with the IUSR permissions not allowing it to access drive C where web
files are not kept; however most sites hosted on my server require both read
and write access, giving the hacker the privilage to do anything he/she wants.
I thought of unregistering the FSO component but many sites use the
Dictionary object wich woul dalso be disabled. I am really stuck and cannot
find a solution.
Has anyone come up with a solution? I have limited hackers access to many
areas by disabling IUSR access; however many folders still need IUSR to write
to them. Also this asp file can see inside access databases too; which is
frightening.
- Next message: Savas: "Re: IIS folder structure and security."
- Previous message: Jason Brown [MSFT]: "Re: SelfSSL Utility - Not working?"
- Next in thread: Ken Schaefer: "Re: FSO exploit"
- Reply: Ken Schaefer: "Re: FSO exploit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
