Navigation
User login
Quote
Dr. Martin Luther King, Jr.
A time comes when silence is betrayal. Some of us who have already begun to break the silence of the night have found that the calling to speak is often a vocation of agony, but we must speak. We must speak out with all the humility that is appropriate to our limited vision, but we must speak.
IIS Exploit of the Day! (yes ANOTHER IIS exploit, and a new fix all patch.)
Wed, 05/16/2001 - 07:53 — charlie.collins
Yep as the register puts it "its been a rough 2 weeks for IIS." Well there is another exploit now out that invloves a simple malformed URL and enables the attacker to run arbitrary code outside the webroot, whoops!
This in addition to the .printer and sadmind exploits of late are simply the next in a long line of IIS security issues.
For more info on this latest problem, see the linked register story.
I wont go off on IIS here (again), but suffice to say if you use IIS, get the patches and check for new patches daily (this wont be the last problem.)
Ok, so one little IIS jab, here goes. Want a real patch for IIS, check here: IIS Once and For All Fix All Problems Patch. IIS Unicode Exploit: theRegister
This work is licensed under a Creative Commons License.
1998-2008 temple of the screaming penguin
TotSP Search
Community
Chatter
16 hours 35 min ago
1 day 19 hours ago
1 week 1 day ago
1 week 2 days ago
1 week 2 days ago
1 week 3 days ago
1 week 4 days ago
2 weeks 5 days ago
2 weeks 5 days ago
2 weeks 6 days ago