asp source code exposure
- From: jlehman@xxxxxxxxxxxxxxxx
- Date: 26 May 2006 18:26:06 -0000
This was flagged as a high vulneribility form a 3rd party sourced perimeter scan. the exploit is http://server/file.asp:$DATA. The problem I am having is that onlyIIS 4 and earlier are supose to be vulnerable, I am running IIS 5. The web server is up to date on Microsoft patches. From an external internetconnection, a windows system using IE get an error 404, no vuln here. From windows with firefox, an attempt to save the source code is attempted, but fails to save. From Linux using firefox, I get the asp source code save to that system. I've been searching for a fix, but hava had no luck. help please
Jim
- Prev by Date: Re: Tons of Source port 80 to random Dest Port Traffic
- Next by Date: Re: AD Policy audit tool for Windows 2000
- Previous by thread: sha-1 shell extension for W2003
- Next by thread: Re: asp source code exposure
- Index(es):
