Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2010-2731

Publish Date: 02 Jul 2010

                							

                MS10-065 - Directory Authentication Bypass Vulnerability

Description:
This vulnerability is because of using Alternate Data Stream to open a protected folder. All of IIS
authentication methods can be circumvented. In this technique, we can add a “:$i30:$INDEX_ALLOCATION” to a directory name to bypass the authentication.

Download:
https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/14179.pdf (IIS5.1_Authentication_Bypass.pdf)

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Microsoft IIS 5.0 - Authentication Bypass (MS10-065)

Vulmon Search

About

Products

Connect