[19702] in bugtraq
Microsoft - Personal Web Server Extended UNICODE Directory
daemon@ATHENA.MIT.EDU (Dinos Pastos)
Mon Mar 19 15:42:36 2001
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
Message-ID: <001201c0af94$83262670$2a741fd4@cytanet.com.cy>
Date: Sun, 18 Mar 2001 12:16:02 +0200
Reply-To: Dinos Pastos <dinopio@LINUX.COM.CY>
From: Dinos Pastos <dinopio@LINUX.COM.CY>
To: BUGTRAQ@SECURITYFOCUS.COM
Hi all...
Just wanted to point out that while testing my Default installation of
Windows 98
running Microsoft Personal Web Server that came with the Windows98 SE CD
I discovered that the famous IIS 4/5 Unicode Directory Traversal
Vulnerability applies also to this Server just as bad as in IIS.
The exploit method is the same :
http://PWS-server/scripts/..%c1%9c../windows/notepad.exe
I wont go in to detail on how to exploit a Windows machine...
(Sorry script kiddies)...
Patches: Dunno.
Quickfixes: Use Linux.
Dinos Pastos - dinopio@linux.com.cy
Security Advisor
