Bugtraq mailing list archives

IIS 5.0 WebDAV -Proof of concept-. Fully documented.

From: Roman Medina <roman () rs-labs com>
Date: Tue, 25 Mar 2003 19:25:48 +0100

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 Hi,

 I wrote another exploit for the nt.dll bug some days ago.
Explanation and a little documentation is included in the source
file. It compiles in Linux/gcc without any error.

http://www.rs-labs.com/exploitsntools/rs_iis.c
[19.5 kbytes]

 Regards,
 --Roman

- --
PGP Fingerprint:
09BB EFCD 21ED 4E79 25FB  29E1 E47F 8A7D EAD5 6742
[Key ID: 0xEAD56742. Available at KeyServ]

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.8 for non-commercial use <http://www.pgp.com>

iQA/AwUBPoB8TOR/in3q1WdCEQLvqgCeLnYnMNDRQggwSn3hEe5YKKPLPl8AnR6K
YV1r+FKjoQmG+nPN0BsRv6jn
=Td4v
-----END PGP SIGNATURE-----

Attachment: rs_iis.c
Description:

Current thread:

IIS 5.0 WebDAV -Proof of concept-. Fully documented. Roman Medina (Mar 25)
- Re: IIS 5.0 WebDAV -Proof of concept-. Fully documented. Dave Aitel (Mar 25)
- TLS timing attack on OpenSSL [can-2003-78] [bid 6884] exploit Martin Vuagnoux (Mar 26)