[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] SSL IIS Remote Root

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] SSL IIS Remote Root
From: Noam Rathaus <noamr@xxxxxxxxxxxxxxxxxx>
Date: Thu, 22 Apr 2004 18:36:57 +0300

On Thursday 22 April 2004 16:17, Gabriel Alexandros wrote:
> Hi,
>
> i currently have 2 IIS5 servers on my network and i would like to know how
> they can be patched either with registry or file alterations, against the
> IIS 5 SSL remote root (IIS SSL is running due to ecommerce and elearning
> systems).
>
> Thanks in advance
Hi,

You can find here an exploit code that will actually test your server for the 
vulnerability:
http://www.securiteam.com/windowsntfocus/5CP0L0KCKO.html

Hope this helps.

-- 
Thanks
Noam Rathaus
CTO
Beyond Security Ltd.

Join the SecuriTeam community on Orkut:
http://www.orkut.com/Community.aspx?cmm=44441

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] SSL IIS Remote Root
  - From: Gabriel Alexandros

Prev by Date: [Full-Disclosure] [Research Paper] DNS Cache Snooping
Next by Date: [Full-Disclosure] Arbitrary file overwriting in Unreal engine through UMOD
Previous by thread: [Full-Disclosure] SSL IIS Remote Root
Next by thread: [Full-Disclosure] ip_setsockopt() sploit
Index(es):
- Date
- Thread