Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Re[2]: Scanning for WebDAV vulns
From: Thierry Zoller <Thierry () Zoller lu>
Date: Thu, 21 May 2009 15:19:22 +0200

Hi

There's no easy way, that I know of, to check for Write access.
There is, a simple PUT command and the checking the response header
is enough.
That
being said, there's a pretty good chance that if you exploit the
install, you'll have write access anyways
The contrary is the case IUSR_anon needs write access, explicitly.


-- 
http://secdev.zoller.lu
Thierry Zoller


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]