bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/windows/dos/20854.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

13 lines
No EOL
512 B
Text
Raw Blame History

source: https://www.securityfocus.com/bid/2736/info
Microsoft IIS 5.0 is vulnerable to a denial of service attack.
A flaw in the WebDav extensions allow a remote attacker to carry out a DoS by repeatedly requesting nonexistent files via the HTTP LOCK method.
This leads to a complete consumption of memory resources, eventually crashing the host and requiring a restart.
LOCK /aaaaaaaaaaaaaaaaaaaaaaaaaa.htw HTTP/1.0
One way is to combine the attack with asp executions, eg.
GET /iisstart.asp?uc=a HTTP/1.0
Reference in a new issue View git blame Copy permalink