This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Online IIS Metabase Explorer"
From OWASP
Dinis.cruz (talk | contribs) |
|||
| Line 1: | Line 1: | ||
| + | {{taggedDocument | ||
| + | | type=old | ||
| + | | lastRevision=2016-07-31 | ||
| + | | comment=The page should be updated. | ||
| + | }} | ||
Online IIS Metabase Explorer is a tool that allows the online browsing of the current IIS Metabase. | Online IIS Metabase Explorer is a tool that allows the online browsing of the current IIS Metabase. | ||
Latest revision as of 21:36, 30 July 2016
This page contains out-of-date content. Please help OWASP to FixME.
Last revision (yyyy-mm-dd): 2016-07-31
Comment: The page should be updated.
Last revision (yyyy-mm-dd): 2016-07-31
Comment: The page should be updated.
Online IIS Metabase Explorer is a tool that allows the online browsing of the current IIS Metabase.
This tool clearly shows the current IIS Metabase ACL vulnerability which allows the disclose of the IIS Anonymous users' details (i.e. the username and password) by accounts that belong to the IIS_WPG security group
Screenshot
Metabase Explorer
