WebDav Exploit ffsMar 24 2003 06:57PM Rafael Nuñez (rnunez scientech com ve)
I've been receiving a bunch of emails concerning if the exploit that I sent
to the list (iis_txt.c ) was focus on WebDav Vuln.. Of course Not (was a
totally different one, based on the old *.asp like iistart.asp). If David
Litchfield read the 1st one he prolly cried.
Regarding this I'm sending the WebDav exploit tested 100% by me
Best Regards
Note: don't ask for the binary one.. Please compile yourself.
-----------------------------------------------------
Rafael Núñez
Senior Research Scientist
Latin American Security & Intelligence Operations
Scientech de Venezuela
-----------------------------------------------------
[w] http://www.scientech.com.ve
[e] rnunez (at) scientech.com (dot) ve [email concealed]
----------------------------------------------------
Tlf.:(58-212) 952.42.66
Fax:(58-212) 951.36.35
----------------------------------------------------
to the list (iis_txt.c ) was focus on WebDav Vuln.. Of course Not (was a
totally different one, based on the old *.asp like iistart.asp). If David
Litchfield read the 1st one he prolly cried.
Regarding this I'm sending the WebDav exploit tested 100% by me
Best Regards
Note: don't ask for the binary one.. Please compile yourself.
-----------------------------------------------------
Rafael Núñez
Senior Research Scientist
Latin American Security & Intelligence Operations
Scientech de Venezuela
-----------------------------------------------------
[w] http://www.scientech.com.ve
[e] rnunez (at) scientech.com (dot) ve [email concealed]
----------------------------------------------------
Tlf.:(58-212) 952.42.66
Fax:(58-212) 951.36.35
----------------------------------------------------
[ reply ]