Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

asp source code exposure

from [jlehman] Network Security [Permanent Link]
Subject: asp source code exposure
Date: 26 May 2006 18:26:06 -0000 
This was flagged as a high vulneribility form a 3rd party sourced perimeter 
scan. the exploit is http://server/file.asp:$DATA. The problem I am having is 
that onlyIIS 4 and earlier are supose to be vulnerable, I am running IIS 5. The 
web server is  up to date on Microsoft patches.  From an external 
internetconnection, a windows system using IE get an error 404, no vuln here. 
From windows with firefox, an attempt to save the source code is attempted, but 
fails to save. From Linux using firefox, I get the asp source code save to that 
system. I've been searching for a fix, but hava had no luck. help please



Jim
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: AD Policy audit tool for Windows 2000, Crawley, Jim
Next by Date:  Re: AD Policy audit tool for Windows 2000, Rob McComber
Previous by Thread:  sha-1 shell extension for W2003, Murad Talukdar
Next by Thread:  Re: asp source code exposure, foo
Indexes:  [Date] [Thread] [Top] [All Lists]