info
discussion
exploit
solution
references
Microsoft IIS 4.0/5.0 File Permission Canonicalization Vulnerability
Solution:
Microsoft has released the following patches which eliminate the vulnerability:
Microsoft IIS 4.0 alpha
Microsoft Q269862
http://download.microsoft.com/download/winntsp/Patch/q269862/NT4ALPHA/ EN-US/prmcan4a.exe
Microsoft Q269862
http://download.microsoft.com/download/winntsp/Patch/q269862/NT4ALPHA/ EN-US/prmcan4as.exe
Microsoft IIS 4.0
Microsoft Q269862
http://download.microsoft.com/download/winntsp/Patch/q269862/NT4ALPHA/ EN-US/prmcan4i.exe
Microsoft Q269862
http://download.microsoft.com/download/winntsp/Patch/q269862/NT4ALPHA/ EN-US/prmcan4is.exe
Microsoft IIS 5.0
Microsoft Q269862
http://download.microsoft.com/download/win2000platform/Patch/q269862/N T5/EN-US/Q269862_W2K_SP2_x86_en.EXE
Privacy Statement
Copyright 2010, SecurityFocus
