[Intrusions] Has anyone seen this?
Paul Schmehl
pauls at utdallas.edu
Thu Aug 25 15:18:29 GMT 2005
--On Thursday, August 25, 2005 09:43:03 -0400 Justin S <jgs316 at gmail.com>
wrote:
>
> I have seen that before. I believe there was an old vulnerability in
> IIS where you could modify your URL to have a bunch of ../ in it and
> it would eventually take you back to the C drvie so you could then
> move forward and access the winnt directory. You would have to have
> an old and unpatched version of IIS to be vulnerable to it though.
>
Yes, but this didn't use directory traversal. That's what made it so odd
and caught my attention.
Paul Schmehl (pauls at utdallas.edu)
Adjunct Information Security Officer
University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu/ir/security/
More information about the Intrusions
mailing list