What id your IIS is in the 'LockDown' state? -----Original Message----- From: Dave Watts [mailto:[EMAIL PROTECTED]] Sent: 22 January 2003 10:35 To: CF-Talk Subject: RE: Goodbye cruel world
> I do not see how one unfiltered URL data in a CFML > page can exploit the machine? There are plenty of people who'd be happy to demonstrate it to you, I'm sure. Google "SQL injection" and read all about SQL injection attacks, if you're interested. The end goal of a typical SQL injection attack is to automate an outbound process, often an FTP client, to fetch useful tools onto the compromised server. If your web server has any vulnerabilities, they might be exploited in a very similar way. I did a very simple demonstration of this at last year's Devcon, using a well-known IIS 5 vulnerability and a couple of batch files to automate the process. Again, the thing to remember is that this is all traffic to legitimate open ports on your machine. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 fax: (202) 797-5444 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Signup for the Fusion Authority news alert and keep up with the latest news in ColdFusion and related topics. http://www.fusionauthority.com/signup.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
