Execiis.c is a remote exploit for Bugtraq ID 2708 - Microsoft IIS CGI filename decode error.
930daed1380743902694409c2275d36ed101487eb3dbd8df8b795068aba598baSensedecode.tgz includes 2 perl scripts which exploit the IIS url decoding bug. Decodecheck.pl checks for hosts that have the "decode" problem, and decodexecute executes code using the decoding problem, with redirection.
d32db266c769e68dd5e55144cdff5aac3d5f570243d3c50560169d168c96b542Patch advisory for Sun Microsystems. Please read for details.
32540a48fb5a0d8bc07e1670adc87f356549fa4519834303ac657833bc9d8420A flaw exists in Microsoft Internet Information Server (IIS) that may allow remote attackers to view directory structures, view and delete files, execute arbitrary commands, and deny service to the server. It is possible for attackers to craft URLs that take advantage of a flaw in IIS URL decoding routines. Security mechanisms within these routines can be bypassed. All recent versions of IIS are affected by this vulnerability.
0678361f10357557833b2a2d33b82e84b3523cf921e44d95ea0e3d806abb98d1Crypto-gram for May 15, 2001. In this issue: Defense Options: What Military History Can Teach Network Security, Part 2, The Futility of Digital Copy Prevention, Microsoft and the Window of Vulnerability, and Safe Personal Computing.
20b338b599dd4ab17ef2a4948a8fbd99759076f754f8239a9958eb784470405aCERT Advisory CA-2001-12 - A serious vulnerability in Microsoft IIS allows remote intruders to execute commands on an IIS web server, as discussed in ms01-026. This vulnerability closely resembles a previous vulnerability in IIS that was widely exploited.
2cadddd3da04743c36a3a52741d938f5153d72e781d14f364e28bbc175735689SuSE Security Advisory SuSE-SA:2001:17 - The crontab program is running setuser-id root and invokes the editor specified in the EDITOR environment variable, usually vi. If crontab discovers that the format of the edited file is incorrect, it executes the editor again but fails to drop its root privileges before. Therefore it is possible to execute arbitrary commands as root.
182161b3dc70f9a7f132c01181274899f16022e0ba9631a637b6a2153c99ffd9NSFOCUS Security Advisory SA2001-02 - The nsfocus team has found a vulnerability in filename processing of CGI program in MS IIS4.0/5.0, as discussed in ms01-026. CGI filename is decoded twice by error. Exploitation of this vulnerability leads to intruders being able to run arbitrary system commands with IUSER_machinename account privilege. Exploit URL's included.
1f24fde1bac96def60ac10c00a6e82940ada309470835ba73f5d78b25c6f6fecMicrosoft Security Advisory MS01-026 - Three new vulnerabilities have been found in Microsoft IIS 5.0. The first allows remote attackers to execute commands in the security context of the IUSR_machinename account. A vulnerability that could enable denial of service attacks against the FTP service due to wildcard expansion has also been patched. Finally, a vulnerability that could make it easier for an attacker to find Guest accounts that had been inadvertently exposed via FTP. If an attacker preceded an account name with a particular set of characters, the FTP service would search the domain, and all trusted domains, for the user account. Microsoft FAQ on these issues available here.
d77ab68c2a8150465e70f464962e49e04844999e9c5b8e255fb11f56de603c88Netscript is a portable and lightweight tcp socket scripting tool. It is intended to allow anyone to script situations based on a word-to-word ruleset response system. Includes wildcard support, character replacement, random replacement, argument inclusion, server timeout, initial send, display altering, multiple character dump formats, telnet protocol support, logging, program to socket dumping, executable ruleset support and reverse binding among other things.
370f649ee79d2c9dd8db41d1bf9d7410ab467e9b1096c33cd4873ec6f1f516cbICQ 2000b Beta v4.65 Build #3281 crack for all features. Shows all IP's in your contact list, allows you to add anyone to your contact list, removes advertising, and disables auto update.
ce40ed3e4d4851332151e0d5d064a4d3f686c4aaf35cfa75bc3d0e00444d3a34Juno-z.101f.c is an improved rewrite of juno.c which is faster and better, employing state of the art tcp technologies.
7034741d8df76e307162a2b879428d8089adfc23f40fc52c888726ad41f960f5Acadsoft's webcgi98.exe displays the full path to the binary in an error message.
87a2492754de406640b736c27877e5fea0ea2bf16f000790a41c42110d3365f5Red Hat Security Advisory RHSA-2001:067-03 - The minicom program allows any user with local shell access to obtain group uucp privileges due to format string bugs. It may also be possible for the malicious user to obtain root privileges as well.
697cd3fe3544adc24391407f06963c01210253ec84199b9233c9afe9546204f5Security Auditor's Research Assistant (SARA) is a security analysis tool based on the SATAN model. It is updated twice a month to address the latest threats. Checks for common old holes, backdoors, trust relationships, default cgi, common logins, open shares, and much more.
1773ac5c19b2ece1d35851a543e2197c342aa77896350fe30acc84b7519bf4ecISS X-Force has discovered a buffer overflow in the ?rpc.espd? component of the Embedded Support Partner (ESP) subsystem. ESP is installed and enabled by default on all current SGI IRIX installations.
6326566a243bd93810f222cdd5171dd79f90bd2adba15b8689aaae8416431796Microsoft Security Advisory MS01-025 - Two unrelated security vulnerabilities have been found in Microsoft Index Server 2.0. The first vulnerability is a buffer overrun vulnerability in the function that processes search requests which allows attackers to run arbitrary code in the local system security context. The second vulnerability affects both Index Server 2.0 and Indexing Service in Windows 2000, and is a new variant of the "Malformed Hit-Highlighting" vulnerability discussed in here.
3198907bcdcc3310a7e0a8bb17d0f7fdfe4d34ec2aa1ba99035ba45dd3f53704
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed