Nmap Development mailing list archives

Re[2]: Scanning for WebDAV vulns

From: Thierry Zoller <Thierry () Zoller lu>
Date: Thu, 21 May 2009 15:19:22 +0200

Hi

There's no easy way, that I know of, to check for Write access.

There is, a simple PUT command and the checking the response header
is enough.

That
being said, there's a pretty good chance that if you exploit the
install, you'll have write access anyways

The contrary is the case IUSR_anon needs write access, explicitly.


-- 
http://secdev.zoller.lu
Thierry Zoller


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

Scanning for WebDAV vulns Ron (May 19)
- Re: Scanning for WebDAV vulns Ron (May 20)
  - Re: Scanning for WebDAV vulns Thomas Buchanan (May 20)
    - Re: Scanning for WebDAV vulns Ron (May 21)
- Re: Scanning for WebDAV vulns Thierry Zoller (May 20)
  - Re: Scanning for WebDAV vulns Ron (May 20)
    - Re: Scanning for WebDAV vulns Ron (May 20)
    - Re[2]: Scanning for WebDAV vulns Thierry Zoller (May 21)