Millions of websites affected by unpatched flaw in Microsoft IIS 6 web server

A proof-of-concept exploit has been published for an unpatched vulnerability in Microsoft Internet Information Services 6.0. The vulnerability is a buffer overflow in the ScStoragePathFromUrl function of the IIS WebDAV service. It can be exploited through a specially crafted PROPFIND request. Security firm ACROS Security has also developed a free “micropatch” for this vulnerability — an unofficial patch that can be applied without restarting the affected server or IIS process.”]

Source: https://www.csoonline.com/article/3186758/millions-of-websites-affected-by-unpatched-flaw-in-microsoft-iis-6-web-server.html

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text