Directory listing in Server FP
Created by: nrathaus
The request sent:
GET /Dir/ HTTP/1.1
Host: X.X.X.X
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.3.2
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: AspxAutoDetectCookieSupport=1;ASP.NET_SessionId=AAnd the response below triggers this vulnerability as being present on the remote host
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store,no-cache, no-store
Pragma: no-cache,no-cache
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: -1,-1
Vary: Accept-Encoding
Server: NA
Set-Cookie: ASP.NET_SessionId=; path=/; secure; HttpOnly
X-Frame-Options: DENY
X-UA-Compatible: IE=Edge
Date: Wed, 02 Dec 2015 13:02:01 GMT
Content-Length: 1712
<!DOCTYPE html>
<html xmlns="http://www.w3.org/1999/xhtml">
<head><meta http-equiv="Cache-Control" content="no-cache" /><meta http-equiv="Pragma" content="no-cache" />
<script type = "text/javascript" >
function preventBack() { window.history.forward(); }
setTimeout("preventBack()", 0);
window.onunload = function () { null };
</script>
<script language="javascript">
function checkKeyCode(evt) {
var evt = (evt) ? evt : ((event) ? event : null);
var node = (evt.target) ? evt.target : ((evt.srcElement) ? evt.srcElement : null);
if (event.keyCode == 116) {
evt.keyCode = 0;
return false
}
}
document.onkeydown = checkKeyCode;
</script>
<title>
</title><link rel="stylesheet" href="css/style.css" /><link rel="stylesheet" href="css/uniform.default.css" /><link href="Styles/Css.css" rel="stylesheet" /><link href="css/MasterStyle.css" rel="stylesheet" /></head>
<body oncontextmenu="return false;">
<form method="post" action="" id="form1" autocomplete="off">
<input type="hidden" name="__VIEWSTATE" id="__VIEWSTATE" value="" />
<input type="hidden" name="__VIEWSTATEENCRYPTED" id="__VIEWSTATEENCRYPTED" value="" />
<input type="hidden" name="__EVENTVALIDATION" id="__EVENTVALIDATION" value="" />
<div class="container">
<div class="up_top">
<a href="javascript:void(0);">
<img src="images/icons/btn_top.png" alt=""/></a>
</div>
<div class="header">
<div class="wrapper">
<h1 class="floatl logo"><a href="http://www..com/" target="_blank">
<img src="Resources/logo.png" alt="" /></a> </h1>
<div class="floatr">
<div class="clear"></div>
<div class="marb15 mart20">
<h3 class="floatl c_white"></h3>
<div class="floatl flag">
<a href="index.html">
<img src="Resources/DHA.png" alt="" width="38" height="24" /></a>
</div>
<h3 class="floatl c_white"></h3>
<div class="clear"></div>
</div>
<div class="clear"></div>
</div>
<div class="clear"></div>
</div>
</div>
<div style="width:100%">
<div class="wrapper">
<div class="pad22 mart15">
<div class=" common_form">
<div style="margin:20px 20px 20px 20px;padding:20px 20px 20px 20px;border:3px solid #c6b8b8;width:310px;">
<table class="common_form">
<tr>
<td>Email:<span class="required">*</span></td>
<td>
<input name="txtEmail" type="text" maxlength="80" id="txtEmail" class="text" style="text-transform:lowercase" />
</td>
<td>
</td>
</tr>
<tr>
<td>Password:<span class="required">*</span></td>
<td>
<input name="txtPassword1" type="password" id="txtPassword1" class="text" />
</td>
<td>
</td>
</tr>
<tr>
<td colspan="2">
</td>
</tr>
<tr>
<td></td>
<td align="right">
<input type="submit" name="ctl09" value="Log-in" onclick="javascript:WebForm_DoPostBackWithOptions(new WebForm_PostBackOptions("ctl09", "", true, "", "", false, false))" class="button" />
</td>
</tr>
<tr style="display:block;">
<td></td>
<td align="right">
<a href="ForgotPassword.aspx" class="usefulLinks">Forgot Password</a>
</td>
</tr>
</table>
</div>
</div>
</div>
</div>
</div>
<div class="wrapper">
<div class="footer">
<p class="floatl">�� </p>
<div class="clear"></div>
</div>
</div>
</div>
</form>
</body>
</html>