Re: IIS 6 strange file - site hacked
- From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
- Date: Mon, 4 Jun 2007 01:00:50 -0700
"Stefan Kanthak" <postmaster@[127.0.0.1]> wrote in message
news:%23h$nEXfpHHA.4364@xxxxxxxxxxxxxxxxxxxxxxx
"Roger Abell [MVP]" <mvpNoSpam@xxxxxxx> wrote:
To my awareness there are no known "holes" in IIS6, in fact
there have not been any security patches for IIS (6 or 5) since
the IIS 5 rollup was released years ago.
What about MSKB 328832?
Stefan
I take it that you disagree with the assessment in that KB stating
that the behavior is by design ? While it does describe an odd
behavior for webhits.dll, I would also note that it says this is an
issue with index server (apparently how it adjusts IIS behavior).
There have been a number of security related, critical isses with
codes that applicatively layer on the IIS frame, but as far as I have
seen none for the IIS frame since the rollup for IIS 5 was issued.
Roger
.
- Follow-Ups:
- Re: IIS 6 strange file - site hacked
- From: Stefan Kanthak
- Re: IIS 6 strange file - site hacked
- References:
- IIS 6 strange file - site hacked
- From: magagnon
- Re: IIS 6 strange file - site hacked
- From: Roger Abell [MVP]
- Re: IIS 6 strange file - site hacked
- From: Stefan Kanthak
- IIS 6 strange file - site hacked
- Prev by Date: KerberosToken constructor gives error - Kerberos credential handle could not be returned
- Next by Date: Re: KerberosToken constructor gives error - Kerberos credential handle could not be returned
- Previous by thread: Re: IIS 6 strange file - site hacked
- Next by thread: Re: IIS 6 strange file - site hacked
- Index(es):
Relevant Pages
|
Loading
