NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Incidents> 2001-05

From: H D Moore (hdmSECUREAUSTIN.COM)
Date: Sun May 06 2001 - 16:16:05 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The only scanner I know of that checks mem_bin for the unicode exploit it
nessus:

http://cvs.nessus.org/cgi-bin/cvsweb.cgi/~checkout~/nessus-plugins/scripts/iis_dir_traversal.nasl

-HD

On Monday 30 April 2001 01:05 pm, Hamid T Ouyachchi wrote:
> Hello all,
>
> Found this in my IIS logs. I recognize the Unicode exploit attempts,
> frontpage msdacs stuff. But what is the /mem-bin/ entry about ?
>
> Hamid Ouyachi
> Contractor
> Office of Workforce Security
> Phone: (202)219-5935 x302

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]