WCM Forum - Einzelnen Beitrag anzeigen

käptn · 21.07.2002, 22:52

na klar findet google nix mit probfind - heisst ja auch propfind...

scheint so ein security-scan wie bei den formmailern oder den fp-extensions zu sein:

IIS 5.0 PROPFIND DOS #2

Systems affected:
IIS 5.0

Risk: Medium
Date: 6 May 2001

...

Description:

It is possible to remotely restart all IIS related services using specially crafted request.
If this request is repeated continously this seriously affects IIS performance.

Details:

Basically the problem are very long but valid propfind request containing lots of ":".

Demonstration:

--vv9.pl-------------------------------------------------------------------
#!/usr/bin/perl
...
---------------------------------------------------------------------------

Workaround: Disabling WebDav extensions may help though I do not recommend using IIS on the Internet.

meine worte...

21.07.2002, 22:52	#2
käptn Inventar Registriert seit: 04.11.2001 Alter: 45 Beiträge: 2.150	na klar findet google nix mit probfind - heisst ja auch propfind... scheint so ein security-scan wie bei den formmailern oder den fp-extensions zu sein: IIS 5.0 PROPFIND DOS #2 Systems affected: IIS 5.0 Risk: Medium Date: 6 May 2001 ... Description: It is possible to remotely restart all IIS related services using specially crafted request. If this request is repeated continously this seriously affects IIS performance. Details: Basically the problem are very long but valid propfind request containing lots of ":". Demonstration: --vv9.pl------------------------------------------------------------------- #!/usr/bin/perl ... --------------------------------------------------------------------------- Workaround: Disabling WebDav extensions may help though I do not recommend using IIS on the Internet. meine worte...