This Metasploit module exploits CVE-2021-31166, a UAF bug in http.sys when parsing specially crafted Accept-Encoding headers that was patched by Microsoft in May 2021, on vulnerable IIS servers. Successful exploitation will result in the target computer BSODing before subsequently rebooting. Note that the target IIS server may or may not come back up, this depends on the targets settings as to whether IIS is configured to start on reboot.
97a44dc1fe6ca954dc341018f61c578a60177d84f6f32df13fcea55667e3fca9RetaRDS.pl checks for IIS web servers which are vulnerable to the RDS bug. Includes host list scanning and IDS evasion.
8ab119af163fc9daed47a7f1e47a2ddb6b694004f8d9fb14478bf9d003f54d5dA quick fix against RFP2101 - PHP-Nuke v4.4 and below allows users to steal accounts via sql hacking.
639d6d1811b57d832ff7d2af027ae6435b390d7af484799883c2ef25deafedf7Interbase.pl is a perl script to scan all hosts in a file on port 3050 for a Interbase database allowing you to find Interbase backdoors with the hard coded username & pass: politically:correct.
228b90a4dd54e05b24e25404f853f1578d34225b438138601db8f17d91d76bb4Stay anonymous on the web - How to maintain your anonymity on the web.
45ce2300d2627861d9d966d197426130d073d8fe43bf00fe2b5dd88b373c5a9e
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed