• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft IIS WebDAV PROPFIND and SEARCH Method Denial of Service Vulnerability

Solution:
Microsoft has released a fix for this issue. It is important to note that the patch for MS02-050 should be applied prior to applying this patch. Applying this patch prior to applying MS02-050 will cause client-side certificates to be rejected.


Microsoft IIS 5.1

• Microsoft Q811114
  For Windows XP 32-bit edition. IIS 5.1 patch to be installed on systems running Windows XP Professional Gold and Service Pack 1.
  http://microsoft.com/downloads/details.aspx?FamilyId=77CFE3EF-C5C5-401 C-BC12-9F08154A5007&displaylang=en


• Microsoft Q811114
  For Windows XP 64-bit edition. IIS 5.1 patch to be installed on systems running Windows XP Professional Gold and Service Pack 1.
  http://microsoft.com/downloads/details.aspx?FamilyId=86F4407E-B9BF-449 0-9421-008407578D11&displaylang=en

Microsoft IIS 5.0

• Microsoft Q811114
  IIS 5.0 patch to be installed on systems running Windows 2000 Service Pack 2 or Service Pack 3.
  http://microsoft.com/downloads/details.aspx?FamilyId=2F5D9852-4ADD-44F 8-8715-AC3D7D7D94BF&displaylang=en