daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2017-7269.yaml

patch-1
Prince Chaddha 2022-05-12 16:45:13 +05:30 committed by GitHub
parent 12a8850815
commit 40e9cf9f8d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
cves/2017/CVE-2017-7269.yaml
View File

@ -15,7 +15,7 @@ info:
cvss-score: 9.8 cvss-score: 9.8
cve-id: CVE-2017-7269 cve-id: CVE-2017-7269
cwe-id: CWE-119 cwe-id: CWE-119
tags: cve,cve2017,rce,windows tags: cve,cve2017,rce,windows,iis
requests: requests:
- method: OPTIONS - method: OPTIONS
@ -24,22 +24,21 @@ requests:
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: status
status:
- 200
- type: word - type: word
part: header
words: words:
- "IIS/6.0" - "IIS/6.0"
part: header
- type: dsl - type: dsl
part: header
dsl: dsl:
- regex("<DAV:sql>", dasl) # lowercase header name: DASL - regex("<DAV:sql>", dasl) # lowercase header name: DASL
- regex("[\d]+(,\s+[\d]+)?", dav) # lowercase header name: DAV - regex("[\d]+(,\s+[\d]+)?", dav) # lowercase header name: DAV
- regex(".*?PROPFIND", public) # lowercase header name: Public - regex(".*?PROPFIND", public) # lowercase header name: Public
- regex(".*?PROPFIND", allow) # lowercase header name: Allow - regex(".*?PROPFIND", allow) # lowercase header name: Allow
condition: or condition: or
part: header
- type: status
status:
- 200
# Enhanced by mp on 2022/05/11 # Enhanced by mp on 2022/05/11