Login Register






SMTPMart - Buy Inbox SMTP | Leads | Shell | cPanel 100% Bonus on 1st deposit | Instant Refunds
ProxyByte $2/GB | Residential IPv4 - No Logs - 26M+ IPs - All unblocked
REFUNDING.GG | #1 REFUND SERVICE | SAME DAY REFUNDS | WORLDWIDE ORDERS | GET ITEMS 85% OFF
New Ownership - Policies and Changes Going Forward
The stories and information posted here are artistic works of fiction and falsehood. Only a fool would take anything posted here as fact.
Thread Rating:
  • 0 Vote(s) - 0 Average


Way to exploit the given list of vulns.? filter_list
Author
Message
virusreloaded Offline
Member
Twelve Years of Service
Posts: 60
Threads: 15
Reputation: 0
Currency: 1 NSP
Way to exploit the given list of vulns.? 04-03-2013, 03:59 PM #1
Following are the result shown while scanning a target for vulnerabilities :

+ Target IP: 72.18.13x.xx
+ Target Hostname: www.xxxxxxxxxxxx.com
+ Target Port: 80
+ Start Time: 2013-04-04 19:18:20
---------------------------------------------------------------------------
+ Server: Microsoft-IIS/6.0

+ Retrieved x-powered-by header: ASP.NET
+ Retrieved x-aspnet-version header: 2.0.50727
+ Root page / redirects to: /site/default.aspx
+ Microsoft-IIS/6.0 appears to be outdated (4.0 for NT 4, 5.0 for Win2k, current is at least 7.5)
+ Retrieved dasl header: <DAVConfusedql>
+ Retrieved dav header: 1, 2
+ Retrieved ms-author-via header: DAV
+ Allowed HTTP Methods: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
+ OSVDB-5646: HTTP method ('Allow' Header): 'DELETE' may allow clients to remove files on the web server.
+ OSVDB-397: HTTP method ('Allow' Header): 'PUT' method could allow clients to save files on the web server.
+ OSVDB-5647: HTTP method ('Allow' Header): 'MOVE' may allow clients to change file locations on the web server.
+ Public HTTP Methods: OPTIONS, TRACE, GET, HEAD, DELETE, PUT, POST, COPY, MOVE, MKCOL, PROPFIND, PROPPATCH, LOCK, UNLOCK, SEARCH
+ OSVDB-5646: HTTP method ('Public' Header): 'DELETE' may allow clients to remove files on the web server.
+ OSVDB-397: HTTP method ('Public' Header): 'PUT' method could allow clients to save files on the web server.
+ OSVDB-5647: HTTP method ('Public' Header): 'MOVE' may allow clients to change file locations on the web server.
+ WebDAV enabled (SEARCH UNLOCK LOCK MKCOL COPY PROPPATCH PROPFIND listed as allowed)
------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

Now my question is :

Is there anyone who can guide me through the process of exploting this website.
I tried using netcat and telnet but it was of no use i think first time this displayed a lot of info when i tried OPTIONS / HTTP/1.1. but now it isn't showing anything and just exits.
[Image: cooltext980231940.gif]

Reply

cracker_team_mybb_import7369 Offline
Member
Twelve Years of Service
Posts: 108
Threads: 6
Reputation: 0
Currency: 0 NSP
RE: Way to exploit the given list of vulns.? 04-05-2013, 07:07 PM #2
just google for the exploit for ex : " OSVDB-397 exploit " in this case you will get this http://www.metasploit.com/modules/exploi...upload_asp or for " OSVDB-5647 exploit " u will get http://www.exploit-db.com/exploits/5647/ .... just try the others Smile

hope this helped u Smile

Reply

virusreloaded Offline
Member
Twelve Years of Service
Posts: 60
Threads: 15
Reputation: 0
Currency: 1 NSP
RE: Way to exploit the given list of vulns.? 04-06-2013, 11:15 PM #3
How to use these exploits?
[Image: cooltext980231940.gif]

Reply

3r3bus Offline
Certified rapist
Twelve Years of Service
Posts: 1,012
Threads: 41
Reputation: 0
Currency: 0 NSP
RE: Way to exploit the given list of vulns.? 04-07-2013, 12:42 PM #4
I would suggest using metasploit.



Reply







Users browsing this thread: 2 Guest(s)