Tell me more ×
IT Security Stack Exchange is a question and answer site for IT security professionals. It's 100% free, no registration required.
up vote 0 down vote favorite

In public apache mod_isapi exploits, they ask for dlls, and I am unsure what I should put in dll.

I am having a hard time understanding exploits.. How does all of dlls connect to manipulating isapi.dll?

share|improve this question
"In public apache mod_isapi exploits" - Do you have a reference? – D.W. Aug 21 '12 at 18:41
If you're asking about how to use a particular Metasploit module, and if the public documentation is not sufficient, I would suggest that you buy a support license from Metasploit or ask on the Metasploit forums. Your question is very naarrow and you're probably more likely to get a good response there. – D.W. Aug 21 '12 at 22:28
kindly go on exploit-db or exploitsdownload or 1337day site to find exploits for the same. – editorh5 Sep 1 '12 at 10:46

1 Answer

up vote 1 down vote

By default, metasploit requests /cgi-bin/SMTPSend.dll

The idea is that the DLL is forced to be unloaded by the server then requested again by the attacker, resulting in a potential violation of the memory pointer because mod_isapi doesn't properly cleanup the pointers to an unloaded DLL.

share|improve this answer

Your Answer

 
discard

By posting your answer, you agree to the privacy policy and terms of service.

Not the answer you're looking for? Browse other questions tagged or ask your own question.