Forum Thread: Microsoft Internet Information Services Basic Authentication Secu...

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
Microsoft Internet Information Services Basic Authentication Security Bypass

Secunia Microsoft Internet Information Services Basic Authentication Security Bypass
Secunia Official 5th Jul, 2010 14:29
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
Soroush Dalili has discovered a vulnerability in Microsoft Internet Information Services, which can be exploited by malicious people to bypass certain security restrictions.

The vulnerability is caused due to an error in the handling of basic authentication for directories. This can be exploited to bypass authentication and access e.g. protected directories by appending the NTFS stream name and stream type (":$i30:$INDEX_ALLOCATION") to the directory name within a request.

The vulnerability is confirmed in version 5.1 on a fully-patched Windows XP SP3. Other versions may also be affected.

RichardD RE: Microsoft Internet Information Services Basic Authentication Security Bypass
Member 5th Jul, 2010 14:29
Score: 7
Posts: 5
User Since: 4th Mar 2010
System Score: N/A
Location: UK
Last edited on 5th Jul, 2010 14:29
Looks like URLScan blocks this vulnerability by default. I've just tried the URL against one of our old Windows 2000 servers, and it gives me a 404 error.
Was this reply relevant?
+7
-0
shinnai RE: Microsoft Internet Information Services Basic Authentication Security Bypass
Member 7th Jul, 2010 12:05
Score: 7
Posts: 4
User Since: 11th Jan 2008
System Score: N/A
Location: IT
Last edited on 7th Jul, 2010 12:05
I can confirm what RichardD said. I've followed step by step the paper written by Soroush Dalili and I just get a 404 error. Where am I wrong?
Was this reply relevant?
+2
-1
taffy078 RE: Microsoft Internet Information Services Basic Authentication Security Bypass
Contributor 7th Jul, 2010 14:12
Score: 408
Posts: 1,460
User Since: 26th Feb 2009
System Score: 100%
Location: UK


--
taffy078, West Yorkshire, UK

HP Envy Win10 PC 1511 Build 10586.71 and Compaq Presario CQ71 Win10 Upgraded 1511 build 10586.71
Was this reply relevant?
+1
-1
shinnai RE: Microsoft Internet Information Services Basic Authentication Security Bypass
Member 7th Jul, 2010 17:23
Score: 7
Posts: 4
User Since: 11th Jan 2008
System Score: N/A
Location: IT
Last edited on 7th Jul, 2010 17:23
taffy078 thanks a lot and sorry for my mistake
Was this reply relevant?
+0
-0