Results 1 to 2 of 2

Thread: fso weakness

  1. #1
    Join Date
    Sep 2004
    Posts
    49

    fso weakness

    Hi !

    There is this new tool called rhtools
    It allows you to control the machine after uploading this onto the remove machine ( IIS )

    Its an ASP file using Encoded VB Code....

    We have the latest security updates installed and the CMD.exe and other files renamed. But this seems to be using some other SHELL available on windows to gain access to the remove machine.

    It is a serious threat... imean really serious. Since it allows you do everything that a hacker would want to do with a remote machine. All with customised options available.

    Is there any way to stop this happening on IIS / Win2k ??

    Thanks

  2. #2
    Join Date
    Jul 2002
    Location
    Malaysia
    Posts
    698
    hmmm.. I find the same issue is addressed at the following thread :

    http://www.experts-exchange.com/Secu..._21178555.html

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •