Microsoft IIS Unicode Requests to WebDAV Multiple Authentication Bypass Vulnerabilities

Microsoft IIS Unicode Requests to WebDAV Multiple Authentication Bypass Vulnerabilities

Attackers may exploit these issues via a browser.

The following proof of concept and exploits are available.

NOTE: The file '34993_cadaver-0.23.2-h4x.patch' may be used with cadaver 0.23.2 to exploit this issue; please see the references for more information.

/data/vulnerabilities/exploits/34993.rb
/data/vulnerabilities/exploits/34993_cadaver-0.23.2-h4x.patch
/data/vulnerabilities/exploits/34993.php
/data/vulnerabilities/exploits/34993.pl
/data/vulnerabilities/exploits/34993.py
/data/vulnerabilities/exploits/34993.txt