Home page logo

bugtraq logo Bugtraq mailing list archives

Re: Enumerate Root Web Server Directory Vulnerability for IIS 4.0
From: chris.paget () ANALYSYS COM (Chris Paget)
Date: Fri, 17 Mar 2000 09:29:05 +0000

At 09:32 09/03/2000 -0600, you wrote:

  I was recently auditing the security on one of my web servers when I came
across a new Extension Enumerate Root Web Server Directory Vulnerability for
IIS 4.0. Going to the main website and asking for anything.idq I get the
page cannot be found. But if the files for the web server reside on a share
the full network path is found.

The Exploit:

On the shared network drive, http://server/anything.idq

The file \\share\wwwroot\inetpub\webpage\*.idq is on a network share. IDQ,
IDA and HTX files cannot be placed on a network share.

Confirmed in IIS 5 as well - Windows 2000 professional (build 2195), IIS 5.
 Same eror message.


Chris Paget
Software Engineer, Analysys LTD.

chris.paget () analysys com

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]