Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: RE: IIS & w2k

RE: IIS & w2k

From: Yonatan Bokovza <Yonatan_at_xpert.com>
Date: Mon, 4 Jun 2001 19:50:51 +0300

There's some newfound evil in win2k debug
registers, see:
http://www.securityfocus.com/bid/2764

For further investigations regarding SQL see this list
archive.

Regards,
Yonatan Bokovza
Xpert Systems

> -----Original Message-----
> From: Luis Javier Perez [mailto:lperez_at_scitum.com.mx]
> Sent: Monday, June 04, 2001 17:49
> To: pen-test_at_securityfocus.com
> Subject: IIS & w2k
>
>
> Hi everyone.
>
> I'm actually doing a pt, and i'm facing a trouble, the
> scenario has a web
> server with w2k and iis 5.0, now i have put netcat listening
> on port 99 and
> i can browse files and stuff like that but i need to scale
> privileges, i
> tried hk but it fails.. is there something like hk for win2k???
> With the info i collected i noticed the server connects with
> a sql server..
> how can i do to exploit the sql..
>
> any help would be appreciated..
>
>
> thanks..
>
>
>
Received on Jun 04 2001

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos