mailing list archives
Re: General Webdav NSE script and the new IIS6 vulnerability
From: Brandon Enright <bmenrigh () ucsd edu>
Date: Tue, 19 May 2009 20:05:27 +0000
-----BEGIN PGP SIGNED MESSAGE-----
On Tue, 19 May 2009 12:38:40 -0700
Fyodor <fyodor () insecure org> wrote:
Hi All. I noticed a thread on the security-basics list where someone
was asking about an NSE script to detect the new IIS authentication
More vuln details:
Webdav+Nmap security-basics thread:
I was just starting to recognize that we should really write a script
for detecting this when Ron IM'd me to say he was doing just that :).
He's working furiously on it at the moment and we can expect an
announcement from him today! Yay!
But that security-basics thread also highlighted an old, more general
Webdav script from Kris which some people were using to help find
potentially vulnerable systems (those with IIS6+WebDAV enabled):
So my questions are:
1) What is the status of this script? Is it ready to be cleaned up
and integrated? I suppose it would need NSEDoc comments, but is
there anything else missing or restructuring needed? Maybe Kris
can let us know his thoughts on this.
2) Do people want this script in Nmap? Anyone want to test it out and
report back to nmap-dev how it worked for you, whether it would be
useful for you going forward, and any suggestions you might have
for improving it?
Small world. I worked on this yesterday but I was not able to come up
with a way to determine if IIS 6 has WebDAV enabled. Does Kris's
script work on IIS 6? I gave up after about a hour of playing
curl/ncat on trying to detect if WebDAV is enabled.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.11 (GNU/Linux)
-----END PGP SIGNATURE-----
Sent through the nmap-dev mailing list
Archived at http://SecLists.Org