Microsoft IIS ISAPI nsiislog.dll ISAPI POST Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft II...

Microsoft IIS Phone Book Service Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft II...

Microsoft IIS ISAPI FrontPage fp30reg.dll Chunked Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft II...

Microsoft IIS 4.0 .HTR Path Overflow

$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'Microsoft II...

Adobe JRun 4 Server File Disclosure (CVE-2004-0928)

Adobe JRun is an application server used to deploy J2EE Java 2 Enterprise Edition applications, JSPs Java Server Pages, and other Java applications. It can be used as a stand-alone web server or can be accessed through other web servers including IIS and Apache. With IIS, JRun can be registered t...

BRS Webweaver 1.33 /Scripts Access Restriction Bypass Vulnerability

No description provided by source. Name : BSR Webweaver Version 1.33 /Scripts access restriction bypass vulnerbility Author : Usman Saeed Company : Xc0re Security Reasearch Group Date : 15/09/09 Homepage : http://www.xc0re.net Download Page : http://www.brswebweaver.com/downloads.html Attack type...

BRS Webweaver 1.33 - Scripts Access Restriction Bypass

BRS Webweaver 1.33 - Scripts Access Restriction Bypass Name : BSR Webweaver Version 1.33 /Scripts access restriction bypass vulnerbility Author : Usman Saeed Company : Xc0re Security Reasearch Group Date : 15/09/09 Homepage : http://www.xc0re.net Download Page :...

Server side request forgery (ssrf)

Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service crash or hang and obtain the full pathname of the server via a request to a file in the ISAPI directory that is not an...

CVE-2008-6938

Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service crash or hang and obtain the full pathname of the server via a request to a file in the ISAPI directory that is not an...

CVE-2008-6938

Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service crash or hang and obtain the full pathname of the server via a request to a file in the ISAPI directory that is not an...

VMSA-2008-0014 : Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX, VMware VCB address information disclosure, privilege escalation and other security issues.

I Security Issues a. Setting ActiveX kill bit Starting from this release, VMware has set the kill bit on its ActiveX controls. Setting the kill bit ensures that ActiveX controls cannot run in Internet Explorer IE, and avoids security issues involving ActiveX controls in IE. See the Microsoft KB...

Microsoft IIS ISAPI Heap Overflow (MS02-018; CVE-2002-0079)

The Microsoft Internet Information Server ASP Active Server Pages ISAPI filter is prone to remote exploitable heap buffer overflow vulnerability. A heap buffer overflow in the "chunked encoding transfer mechanism" in Microsoft IIS Internet Information Server and Active Server Pages allows attacke...

Microsoft Internet Infomation Server 6.0 ISAPI Filename Analytic Vulnerability

IIS6 Internet Infomation Server 6.0 是微软出品的一款WEB服务器系统, 广泛用于各种个人/商业信息发布/网站架设领域。80sec在测试中发现, IIS设计上在处理畸形文件名的时候存在一个严重的安全漏洞, 可能绕过web程序的逻辑检查从而能导致服务器以IIS进程权限执行任意恶意用户定义的脚本, 黑客可以通过制造畸形的服务器文件来触发该 漏洞, 并从而控制服务器. IIS 6.0 Microsoft http://www.microsoft.com 等待微软更新官方补丁...

On in the browser*. exe file the explore-exploit warning-the black bar safety net

On in the browser. exe file explore in depth A: really can in the browser command file? The answer is Yes. （Wow, cool! Can......） But don't happy, can only be performed server-side, but is must be authorized. Otherwise the server think the Black you're too easy. Who dares to look at me, I just...

pi3Web ISAPI目录遍历远程拒绝服务漏洞

BUGTRAQ ID: 32287 Pi3Web是免费的多线程HTTP服务器和开发环境。 Pi3web没有充分地检查入站请求。如果远程攻击者向服务器所请求的文件为ISAPI目录中的无效DLL的话，服务器就会将其作为DLL库加载到内存，导致崩溃。 Pi3.org Pi3Web 2.0.13 临时解决方法： 在服务器配置的Server Admin Mapping Tab中禁用ISAPI。 删除ISAPI文件夹中的users.txt、install.daf和readme.daf。 厂商补丁： Pi3.org -------...

Pi3Web ISAPI DoS

The Pi3Web HTTP server crashes when a request is made for an invalid DLL file in /isapi for versions 2.0.13 and earlier. By default, the non-DLLs in this directory after installation are users.txt, install.daf and readme.daf. This module requires Metasploit: https://metasploit.com/download Curren...

pi3web-dos.txt

Pi3Web ISAPI DoS vulnerability Discovered by: Hamid Ebadi CSIRT Team Member Amirkabir University CSIRT Laboratory APALaboratory [email protected] Introduction Pi3Web is a free, multithreaded, highlyconfigurable and extensible HTTP server and development environment for crossplatform internet serv...

Pi3Web <= 2.0.13 (ISAPI) Remote Denial of Service Exploit

No description provided by source. Pi3Web ISAPI DoS vulnerability Discovered by: Hamid Ebadi CSIRT Team Member Amirkabir University CSIRT Laboratory APA Laboratory [email protected] Introduction Pi3Web is a free, multithreaded, highly configurable and extensible HTTP server and development...

Pi3Web <= 2.0.3 (ISAPI) Remote Denial of Service Exploit

No description provided by source. Pi3Web ISAPI DoS vulnerability Discovered by: Hamid Ebadi CSIRT Team Member Amirkabir University CSIRT Laboratory APA Laboratory [email protected] Introduction Pi3Web is a free, multithreaded, highly configurable and extensible HTTP server and development...

Pi3Web <= 2.0.3 (ISAPI) Remote Denial of Service Exploit

Exploit for unknown platform in category dos / poc ======================================================== Pi3Web Mapping Tab. 2. Delete the users.txt, inst...