On 5 Dec 2000, at 15:54, [EMAIL PROTECTED] wrote:
> (I don't know exactly which bug it was that was exploited, but according to the
> NAI spokesperson, it was something for which a patch was issued on Nov 7th,
> which was a rather long time ago in security terms.)
Hmm, according to the Microsoft Security Bulletin list
([EMAIL PROTECTED]) nothing was
issued on that date, although the day before there was a patch for IIS5 for
"Web Server File Request Parsing" Vulnerability (MS00-086) which allows
the running of "operating system commands" on the affected server.
Dan
---
D.C. Crichton email: [EMAIL PROTECTED]
Senior Systems Analyst tel: +44 (0)121 706 6000
Computer Manuals Ltd. fax: +44 (0)121 606 0477
Computer book info on the web:
http://computer-manuals.co.uk/
Want to earn money? Join our affiliate network!
http://computer-manuals.co.uk/affiliate/
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
