iis7. 5+fck parsing vulnerability take Station-vulnerability warning-the black bar safety net

2013-03-18T00:00:00
ID MYHACK58:62201337819
Type myhack58
Reporter 佚名
Modified 2013-03-18T00:00:00

Description

IIS6. 0 parsing vulnerability, you can upload a. asp;. jps or a. asp;a. jpg or a. asp directory transmitted in any format pony, will resolve

This is about IIS7. 5 parsing vulnerability

http://www.site.com/fckeditor/editor/fckeditor.html

Upload picture, browse, Upload a aspx of the word Trojan, the name is: a. aspx. a;. a.aspx.jpg..jpg that

After uploading directly to get the upload address