Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: escalating IUSR to admin rights via unicode and iis4

Re: escalating IUSR to admin rights via unicode and iis4

From: Jeanette LaRosa <bluehonda_at_att.net>
Date: 11 Jul 2002 21:46:50 -0000
('binary' encoding is not supported, stored as-is) In-Reply-To: <200207091718.g69HIFI92011_at_mailserver4.hushmail.com>

Upload the cmdasp script from Maceo to the victim
server. It will give you a form interface to submit
commands that will run as SYSTEM on IIS4. You used to
be able to download it from
http://www.dogmile.com/files, but this site seems to
have disappeared. (Anyone know if Maceo has a new
site?)
You should be able to cut and paste the code from
here:
http://www.securiteam.com/tools/CmdAsp_asp_checks_your
_last_line_of_defense.html

JL

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Received on Jul 11 2002

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]