Security Basics mailing list archives
Re: IIS on windows 2003
From: "Gaddis, Jeremy L." <jeremy () linuxwiz net>
Date: Tue, 20 Dec 2005 20:01:39 -0500
Ricardo Montenegro wrote:
Is atack?2005-12-13 12:48:30 W3SVC1 192.168.1.2 <http://192.168.1.2> HEAD /samples/............/winnt/system32/cmd.exe /c+dir+c:\ 80 - 82.163.230.113 <http://82.163.230.113> - 404 0 3 2005-12-13 12:48:31 W3SVC1 192.168.1.2 <http://192.168.1.2> HEAD /scripts..../winnt/system32/cmd.exe /c+dir+c:\ 80 - 82.163.230.113 <http://82.163.230.113> - 404 0 3 2005-12-13 12:48:31 W3SVC1 192.168.1.2 <http://192.168.1.2> HEAD /scripts/.%2e/.%2e/winnt/system32/cmd.exe /c+dir+c:\ 80 - 82.163.230.113 <http://82.163.230.113> - 404 0 3
Yes, it was an attack.No, it wasn't successful. IIS 6.0 on Windows Server 2003 isn't vulnerable to this attack.
HTH, -j -- Jeremy L. Gaddis, GCWN, Linux+, Network+ LinuxWiz Consulting http://www.linuxwiz.net/ --------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINEThe Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations.
http://www.msia.norwich.edu/secfocus ----------------------------------------------------------------------------
Current thread:
- IIS on windows 2003 Ricardo Montenegro (Dec 20)
- Re: IIS on windows 2003 Gaddis, Jeremy L. (Dec 21)
- Re: IIS on windows 2003 John Doe (Dec 21)