IISExplorer.PHP by me. http://spoor12.edup.tudelft.nl/SkyLined%20v4.2/?Software
Creates an Explorer look-a-like interface for you to browse the exploitable server with. Berend-Jan Wever ----- Original Message ----- From: "Paul Schmehl" <[EMAIL PROTECTED]> To: "Full-Disclosure" <[EMAIL PROTECTED]> Sent: Thursday, February 13, 2003 0:26 Subject: [Full-Disclosure] Unusual request > The net is filled with so much junk now, it's getting harder to find > what you need. I am looking for an exploit that will give you "root" on > an unpatched IIS box by simply typing a string in the address line in > your browser. I know I've seen it before, but I can't seem to find it > amongst all the vulns for IIS and all the web logs that show up when you > google. > > I need this for a "security roadshow" that we're putting together, so I > can demonstrate how easy it is to break in to an unpatched box. Can > anybody point me in the right direction? > > I don't want exploit code. This is just a simple string that you enter > into the URL box in a browser. It's at least two or three years old, I > know. > > -- > Paul Schmehl ([EMAIL PROTECTED]) > Adjunct Information Security Officer > The University of Texas at Dallas > http://www.utdallas.edu/~pauls/ > AVIEN Founding Member > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
