Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Frontpage files

from [Burnett, Robert] Network Security [Permanent Link]
Subject: Frontpage files
Date: Thu, 28 Oct 2004 12:56:56 -0400 
Hello,

When pentesting, I sometimes come across web servers that have the _vti_bin and 
all the other _vti_* directories present even though Frontpage Extensions have 
been disabled.  In IIS, when you disable the Extensions, shouldn't those 
directories be removed as well?  Or are they still needed for some reason?  I 
have developed a website using Frontpage before, and I noticed that the 
Frontpage-generated HTML would often invoke scripts located in the "_fpclass" 
folder, but not the _vti_* folders.

My second question is, if Frontpage Extensions are disabled, and those 
directories are still present, can files inside them (e.g. author.dll, 
admin.dll) still be exploited in any way, or are they harmless?

Thanks.

Robert
----------------------------------------------------------------------------------------------------

Confidentiality Notice
The content of this communication, along with any attachments, is covered by 
federal and state law governing electronic communications and may contain 
confidential and legally privileged information.  If the reader of this message 
is not the intended recipient, you are hereby notified that any dissemination, 
distribution, use or copying of the information contained herein is strictly 
prohibited.  If you have received this communication in error, please 
immediately contact us by telephone at (301) 977-6966 or e-mail 
info@fortrex.com.  Thank you.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Frontpage files, Burnett, Robert <=
Previous by Date:  Re: TS/3389 risk on Internet, Lennart Sorth
Next by Date:  Re: TS/3389 risk on Internet, Adam Jones
Previous by Thread:  Re: TS/3389 risk on Internet, Lennart Sorth
Next by Thread:  Re: VoIP pentest ?, Volker Tanger
Indexes:  [Date] [Thread] [Top] [All Lists]