Search

Harry Waldron - Corporate Security News

New Security Developments, Best Practices, and Important Security Updates

RSS
Atom

Home
Contact

IIS 5/6 vulnerability (971492) - How to Find WebDAV

Posted Sunday, May 24, 2009 6:31 PM by hwaldron

The ISC has posted some helpful links for IIS and System Admins on techniques to locate WedDAV vulnerabilities

Star ISS Administration - How to locally determine if WebDAV is active
http://isc.sans.org/diary.html?storyid=6433
http://support.microsoft.com/kb/328505
http://blogs.technet.com/srd/archive/2009/05/20/answers-to-the-iis-webdav-authentication-bypass-questions.aspx

Star ISS Administration - Using nmap to remotely locate WebDAV
http://isc.sans.org/diary.html?storyid=6436
http://nmap.org/nsedoc/scripts/http-iis-webdav-vuln.html

Comments

No Comments