snortattack

Microsoft Internet Information Server ftpd zeroday

Ciao a tutti!

"Kingcope" ha pubblcato nella giornata di ieri una vulnerabilità su Microsoft IIS5 e 6. Esiste già un Exploit per IIS 5 e 5.1, ancora non ne esistono per IIS 6. Possibilità di eseguire codice remoto, attacchi DOS e privilege escalation.

Microsoft advisory : http://www.microsoft.com/technet/security/advisory/975191.mspx
Exploit code : http://milw0rm.com/exploits/9541
SNORT signature update : http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2009-09-01.html
Nmap detect host scan : http://blog.rootshell.be/2009/09/01/detecting-vulnerable-iis-ftp-hosts-u...

Stay TUNED!
Snortattack TEAM!

Microsoft Internet Information Server ftpd zeroday

Hi to everybody !

Renowed security researcher "Kingcope" published a recent zero day vulnerability (i.e no patch and unkown at the time of publication) affecting Microsoft IIS 5 and IIS 6. Functional exploit code exists for IIS 5 / 5.1 no functional exploit code is known to exist for IIS 6.

Code execution possible on IIS5/5.1 if write access granted, DoS is possible on both IIS5 and IIS6. Note - there is a improbable condition that may allow code execution on IIS5/5.1 even if write access is not granted, the condition is that a directory is present that has certain characters in it and has a certain length.

Microsoft advisory : http://www.microsoft.com/technet/security/advisory/975191.mspx
Exploit code : http://milw0rm.com/exploits/9541
SNORT signature update : http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2009-09-01.html
Nmap detect host scan : http://blog.rootshell.be/2009/09/01/detecting-vulnerable-iis-ftp-hosts-u...

MEMOByte 2009

Sabato 6 Giugno 2009 si terrà MEMOByte 2009, una giornata dedicata a GNU/Linux, al software libero e al mondo dell'informatica in generale, sarà presente anche lo snortattack TEAM!

partecipate numerosi !

http://www.associarco.it/index.php?page=memobyte

Stay Tuned!