Microsoft Internet Information Server Hit Highlighting Authentication Bypass Vulnerability

Microsoft Internet Information Server Hit Highlighting Authentication Bypass Vulnerability

References:

Hit-highlighting does not rely on IIS authentication (Microsoft)
Microsoft IIS Homepage (Microsoft)
Security Guidance for IIS (Microsoft)
Microsoft IIS5 NTLM and Basic authentication bypass (Jesus Olmos Gonzalez)

Privacy Statement
Copyright 2010, SecurityFocus