webdav漏洞的利用（Use of WebDAV vulnerabilities）.docVIP

webdav漏洞的利用（Use of WebDAV vulnerabilities） D0000D sent to the forum No2 plate technical articles D8888D post title Use of WebDAV vulnerabilities D8888D new content I. Basic Situation of vulnerability 1, vulnerability name and description Name: Microsoft Windows 2000 WebDAV Remote Buffer Overflow Vulnerability Microsoft Security Bulletin: MS03-007 Unchecked, Buffer, In, Windows, Component, Could, Cause, Web, Server, Compromise () Address [url=/technet/security/bulletin/MS03-007.asp] link mark /technet/security/bulletin/MS03-007.asp[/url] Description: the WebDAV component contained in IIS 5 does not adequately check data passed to some system components, and a remote attacker exploits this vulnerability Buffer overflow attacks on WebDAV may execute arbitrary instructions on the system with Web process privileges. 2, the affected system Microsoft IIS 5 - Microsoft Windows 2000 Professional/Server/ Datacenter Server SP3 - Microsoft Windows 2000 Professional/Server/ Datacenter Server SP2 - Microsoft Windows 2000 Professional/Server/ Datacenter Server SP1 - Microsoft Windows 2000 Professional/Server/ Datacenter Server 3. What is the WebDAV component? Microsoft IIS 5 (Internet Information Server 5) is a network that comes with Microsoft Windows 2000 The information server, which includes the HTTP service function. IIS5 provides support for WebDAV by default, and WebDAV (Web based distributed writing and rewriting) is a set of extensions to the HTTP protocol that allows users to collaboratively edit and manage files on remote Web servers. The use of WebDAV, can provide remote file storage service to users through HTTP, including create, move, copy and delete files on a remote server, but as a general HTTP server, this function is not required. 4, the reasons for the vulnerability The reason for this vulnerability is because WebDAV uses some of the API functions in ntdll.dll, and there is a delay in these functions Buffer overflow, Microsoft and IIS 5 with the WebDAV comp