|
NT IIS Double Byte Code Page Vulnerability
Solution: Microsoft has re-issued the patch to correct this vulnerability. The original hotfix was found to have a regression error. This patch can be downloaded from the original location, in the following languages at: English: ftp://ftp.microsoft.com/bussys/iis/iis-public/fixes/usa/security/fesrc-fix Simplified Chinese: ftp://ftp.microsoft.com/bussys/iis/iis-public/fixes/chs/security/fesrc-fix Traditional Chinese: ftp://ftp.microsoft.com/bussys/iis/iis-public/fixes/cht/security/fesrc-fix Japanese: ftp://ftp.microsoft.com/bussys/iis/iis-public/fixes/jpn/security/fesrc-fix Korean: ftp://ftp.microsoft.com/bussys/iis/iis-public/fixes/kor/security/fesrc-fix The patch fixes the problem by checking for single bytes before determining whether any processing is required. |
|
|
Privacy Statement |
