42 matches found
Microsoft IIS 4.0/5.0 and PWS - Extended Unicode Directory Traversal (6)
/ iisex iis exploit grtz to: Bio, nos, zoa, reg and vor... who else would stay up at night to exploit this? to securax securax@efnet - also to kim, glyc, s0ph, tessa, lamagra and steven. / include include include include include include include include int mainint argc, char argv char buffy666; /...
Microsoft IIS 4.0/5.0 and PWS - Extended Unicode Directory Traversal (2)
source: https://www.securityfocus.com/bid/1806/info Microsoft IIS 4.0 and 5.0 are both vulnerable to double dot "../" directory traversal exploitation if extended UNICODE character representations are used in substitution for "/" and "". Unauthenticated users may access any known file in the...