| 关键词: IIS directory hackers access asp aaa successfully Information Application 漏洞 |
影响版本: IIS6.0 or lower 漏洞描述: Application:Microsoft Internet Information Services (IIS) Note:Tested on IIS 6.0 Work successfully ########################################################## hackers build a directory called aaa.asp then aaa.asp directory put a picture inside the Trojans , hackers access aaa.asp/xxx.webp will be able to access trojan ! Original document: http://blog.pouya.info/userfiles/vul/IIS0day.pdf <*参考 http://blog.pouya.info/userfiles/vul/IIS0day.pdf http://securitylab.ir/bt/IIS0day.zip *> SEBUG安全建议: Upgrade to IIS 7.0 |
|
声明:文章版权归原作者所有 部分文章转自互联网 如有侵权请联系
[邮箱地址] 删除
|