Under certain circumstances, windows 8.3 short names may be bruteforce enumerated under IIS with .net enabled,
request these two urls:
If the first one return HTTP 404 and the second one return no 404. Your server might be exploitable to this vulnerability.
- Bug fixed: extention short than 4 letters like
/webdeb~1.cs
now could be enumerated - Code reconstruction
iis_shortname_Scan.py target
from http://www.lijiejie.com my[at]lijiejie.com