ASPX Shell

2008-02-14T00:00:00
ID SAINT:0A63E97E56C504AEB8131968296936D7
Type saint
Reporter SAINT Corporation
Modified 2008-02-14T00:00:00

Description

Added: 02/14/2008

Background

This exploit does not exploit a vulnerability, but instead creates an aspx page. The page, if placed on an IIS server, establishes a shell connection when requested.

Problem

N/A

Resolution

N/A

References

N/A

Limitations

The user needs the ability to upload the resulting page to an IIS server. This exploit does not provide the mechanism to do so. When the page is requested, there may be a delay of a few seconds before the connection is established.

Platforms

Windows