|
|
|
|
|
|
by qingcharles
678 days ago
|
|
|
When I was in my greyhat days I gained admin access[0] to a very big IIS web hosting provider. After spending a day trawling through their file system I found the actual admin password for their servers in a file. I tested it via their open RDP port. It worked. Their password? "internet" I sent them an email showing them their vulns. I never followed up to see if they did anything about it. [0] they had a forum that allowed profile pic uploads but it didn't check they were images, so I crafted an ASP page which emulated a file explorer and uploaded that, then browsed to it. |
|
|