info
discussion
exploit
solution
references
MS IIS/PWS Escaped Characters Decoding Command Execution Vulnerability
References:
IIS CGI Filename Decode exploit
(CORE Security)
Microsoft Security Bulletin MS01-026
(Microsoft)
Microsoft Security Bulletin MS02-026
(Microsoft)
Vulnerability-check tool
(Adriano Maia
)
Privacy Statement
Copyright 2010, SecurityFocus
