Metasploit mailing list archives
Re: dir_scanner module
From: Jonathan Cran <jcran () metasploit com>
Date: Wed, 06 Oct 2010 10:41:02 -0500
Hendrik Bäcker wrote:
Hi, Don't know if it might be interesting for the dir_scanner but the thing Alfonso said is, in some cases, more interesting when inspecting the response header against private IP addresses like 10.*, 192.168.* and so on. Misconfigured Bea Webservers leak those fragments like some actual IIS (there was an BID against IIS 4 but nowadays it might be less a bug and more a misconfiguration. If someone says it's interesting enough I would try to send a patch. Any comments?
Hendrik -- Definitely. It'd be nice to see internal ip addresses leaked through the headers, in addition to any other interesting info that was leaked. here's a newer KB article for one of the issues you're describing http://support.microsoft.com/kb/218180 Alfonso - feature request filed as https://www.metasploit.com/redmine/issues/2853 - thanks! jcran _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- dir_scanner module alfonso caponi (Oct 05)
- Re: dir_scanner module Hendrik Bäcker (Oct 05)
- Re: dir_scanner module Jonathan Cran (Oct 06)
- Re: dir_scanner module Hendrik Baecker (Oct 06)
- Re: dir_scanner module Jonathan Cran (Oct 06)
- Re: dir_scanner module Hendrik Bäcker (Oct 05)