PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2025-12-15 12:19:02 +00:00
Code Issues Projects Releases Wiki Activity

Improved the script's ability to check subfolders by moving where the 'exploit' unicode characters (%c0%af) are to the beginning of the string.

Browse Source
This commit is contained in:
ron
2009-05-19 21:21:55 +00:00
parent c213cc97b1
commit 571145d92a
1 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
scripts/http-webdav-unicode-bypass.nse
View File

@@ -69,7 +69,7 @@ local function go_single(host, port, folder)
stdnse.print_debug(1, "http-webdav-unicode-bypass: Found protected folder (401): %s", folder) stdnse.print_debug(1, "http-webdav-unicode-bypass: Found protected folder (401): %s", folder)
vuln_response = get_response(host, port, folder .. "%c0%af") vuln_response = get_response(host, port, "/%c0%af" .. string.sub(folder, 2))
if(vuln_response.status == 207) then if(vuln_response.status == 207) then
stdnse.print_debug(1, "http-webdav-unicode-bypass: Folder seems vulnerable: %s", folder) stdnse.print_debug(1, "http-webdav-unicode-bypass: Folder seems vulnerable: %s", folder)
return enum_results.VULNERABLE return enum_results.VULNERABLE
@@ -98,12 +98,12 @@ local function go(host, port)
end end
if(folder_file == nil) then if(folder_file == nil) then
return false, "Couldn't find folders.lse (should be in nselib/data)" return false, "Couldn't find folders.lst (should be in nselib/data)"
end end
local file = io.open(folder_file, "r") local file = io.open(folder_file, "r")
if not file then if not file then
return false, "Couldn't find folders.lse (should be in nselib/data)" return false, "Couldn't find folders.lst (should be in nselib/data)"
end end
while true do while true do