Re: Sam File via IIS flaw

From: Peter Wood (peterw@firstbase.co.uk)
Date: Thu Jun 30 2005 - 07:22:33 EDT

• Next message: ctg: "Re: CEH training"
• Previous message: Jerome Athias: "Re: Sam File via IIS flaw"
• In reply to: nordicsmak@yahoo.com: "Sam File via IIS flaw"
• Next in thread: Prashant Meswani: "RE: Sam File via IIS flaw"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

pwdump4 is the favourite, from various sites including:
http://www.hackingdefined.com/tools/password/Pwdump4.zip

Pete

At 19:02 28/06/2005 +0000, nordicsmak@yahoo.com wrote:
>During a recent penetration test I've discovered a flaw in the IIS
>server that allows me to browse to and view any file on the system.
>
>I'm able to browse to the /winnt/repair/sam file, but it obviously is
>unusable in the format that's presented in the browser.
>
>Any way to get this file in a format that can be used in L0pht?
>
>Thanks,
>Chris

Peter Wood FBCS CITP MIEEE MIMIS CISSP
Chief of Operations
First Base Technologies
+44 (0)1273 454525
www.fbtechies.co.uk
www.white-hats.co.uk

• Next message: ctg: "Re: CEH training"
• Previous message: Jerome Athias: "Re: Sam File via IIS flaw"
• In reply to: nordicsmak@yahoo.com: "Sam File via IIS flaw"
• Next in thread: Prashant Meswani: "RE: Sam File via IIS flaw"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:30 EDT