We didn't hire anyone to run a pentest - don't think that in my part of the world it is even possible do to that unfortunately :) There's an instance of MS SharePoint Portal running on of that IIS. As far as i could see there were no HTTP 200 responses that shouldn't have been there, but i will dig more - as much as i can, since as i said, i don't have much expirience.
Thank you all for a quick response... Nemanja. --------------------------------------------------------------------------- ---------------------------------------------------------------------------
