CVE-2009-1122

Related Files

MS09-020 IIS6 WebDAV Unicode Authentication Bypass

Posted Sep 1, 2024

Authored by Efrain Torres, aushack | Site metasploit.com

This Metasploit module attempts to to bypass authentication using the WebDAV IIS6 Unicode vulnerability discovered by Kingcope. The vulnerability appears to be exploitable where WebDAV is enabled on the IIS6 server, and any protected folder requires either Basic, Digest or NTLM authentication.

tags | exploit

advisories | CVE-2009-1122, CVE-2009-1535

SHA-256 | 5012479314892cd881dad187059b4c650acb9e753aec5bd911756919ebc31af4

Download | Favorite | View

MS09-020 IIS6 WebDAV Unicode Auth Bypass Directory Scanner

Posted Sep 1, 2024

Authored by Jay Turla | Site metasploit.com

This Metasploit module is based on ets HTTP Directory Scanner module, with one exception. Where authentication is required, it attempts to bypass authentication using the WebDAV IIS6 Unicode vulnerability discovered by Kingcope. The vulnerability appears to be exploitable where WebDAV is enabled on the IIS6 server, and any protected folder requires either Basic, Digest or NTLM authentication.

tags | exploit, web

advisories | CVE-2009-1122, CVE-2009-1535

SHA-256 | d48b3dd3c4c04a7b1bb169b3d1c6ad69659f24ec5a66227267626146fd55a9d3

Download | Favorite | View