Re: dir_scanner module

[Jonathan Cran <jcran () metasploit com>]

Hendrik Bäcker wrote:
> Hi,
>
> Don't know if it might be interesting for the dir_scanner but the thing Alfonso said is, in some cases, more 
> interesting when inspecting the response header against private IP addresses like 10.*, 192.168.* and so on.
> Misconfigured Bea Webservers leak those fragments like some actual IIS (there was an BID against IIS 4 but nowadays 
> it might be less a bug and more a misconfiguration.
>
> If someone says it's interesting enough I would try to send a patch.
>
> Any comments?

Hendrik -- Definitely. It'd be nice to see internal ip addresses leaked
through the headers, in addition to any other interesting info that was
leaked. here's a newer KB article for one of the issues you're
describing http://support.microsoft.com/kb/218180

Alfonso - feature request filed as
https://www.metasploit.com/redmine/issues/2853 - thanks!


jcran

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework