daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2017-7269.yaml

patch-1
sandeep 2021-05-09 22:50:07 +05:30
parent ce63f8ebea
commit 1913076aef
1 changed files with 4 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
cves/2017/CVE-2017-7269.yaml
View File

@ -4,7 +4,7 @@ info:
name: Windows Server 2003 & IIS 6.0 RCE
author: thomas_from_offensity & @geeknik
severity: critical
description: Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request.
description: Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If <http://" in a PROPFIND request.
reference:
- https://blog.0patch.com/2017/03/0patching-immortal-cve-2017-7269.html
- https://github.com/danigargu/explodingcan/blob/master/explodingcan.py
@ -14,15 +14,18 @@ requests:
- method: OPTIONS
path:
- "{{BaseURL}}"
matchers-condition: and
matchers:
- type: status
status:
- 200
- type: word
words:
- "IIS/6.0"
part: header
- type: dsl
dsl:
- regex("<DAV:sql>", dasl) # lowercase header name: DASL