Posts tagged Tool
- Detects Directory traversal vulnerabilities on remote HTTP/FTP server systems.
- Currently, the traversal database holds 881 attack payloads. Use the -update flag to perform an online fresh update.
- DotDotPwn checks the presence of boot.ini on the vulnerable systems through Directory traversal vulnerabilities, so it’s assumed that the tested systems are
- Windows based HTTP/FTP servers.
How to use
It requires perl with HTTP module
[email protected]:/pentest/web# wget http://chr1x.sectester.net/toolz/ddpwn/ddpwn.tar.gz
[email protected]:/pentest/web#tar -xvf ddpwn.tar.gz
Microsoft has been released a Complete Advisory to fix the LNK Vulnerability and a Detailed Guide and Steps have been given to fix it.
so System administrators make sure u follow the below guide and secure from this threat.