Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Security breach

To: "'Rick Inzerillo'" <[email protected]>
Subject: RE: [FW1] Security breach
From: "Prieto Martínez, Javier" <[email protected]>
Date: Wed, 6 Jun 2001 09:24:56 +0200
Cc: [email protected]
Sender: [email protected]

> the web server that was scanned has entries like this:
> /scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir
> /c+dir 404 3 604 66 80 -
> (this may be part of sadmind?)

They're trying to exploit an issue with Microsoft's IIS 4.0 and IIS 5.0.
You can find more information about that in
http://www.microsoft.com/technet/security/bulletin/MS01-026.asp.

     Javier Prieto Martínez 
     Equipo de Sistemas, Intranet del S.A.S.
     e-Mail: [email protected]


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] SecuRemote build 4174 and Win2k SP2
Next by Date: RE: [FW1] IIS 4.0 and firewall-1
Previous by thread: RE: [FW1] Security breach
Next by thread: [FW1] Problem with FTP sites
Index(es):
- Date
- Thread