Notable Microsoft IIS remote-execution vulnerability


Microsoft IIS allows for local file inclusion of any filetype due a bug in the way its filters handle semicolons.

Although this bug is classed as "less critical" by Microsoft, due to its nature when combined with other known vulnerabilities we class it as highly critical and recommend to all our clients running Windows 2003 servers to review their web code to avoid possible website security breaches.

Source: The Register

Latest News

Page 1 of 4  > >>

Some of you using wholesale broadband suppliers (ISP, such as BT and VirginMedia) started receiving their own emails that were marked as spam.
Please beware of "internet keyword" and domain scam emails from Asia.
Microsoft IIS allows for local file inclusion of any filetype due a bug in the way its filters handle semicolons.