MS IIS/PWS Escaped Characters Decoding Command Execution Vulnerability

MS IIS/PWS Escaped Characters Decoding Command Execution Vulnerability

Solution:
We have conflicting reports regarding whether installing Windows 2000 SP2 after the patch (Q293826_W2K_SP3_x86_en) for this issue has been applied will re-expose this vulnerability. Although Microsoft has not confirmed the re-exposure of this issue, administrators should consider re-applying the patch.

Microsoft has released a patch that recitifies this issue.

Adriano Maia <shooter@unsekure.com.br> has provided a vulnerability check tool, which is available for download in the reference section.

Microsoft IIS 4.0

Microsoft Q295534
http://download.microsoft.com/download/winntsp/Patch/q293826/NT4/EN-US /Q295534i.exe

Microsoft Q295534
Install both IIS 4.0 patches.
http://download.microsoft.com/download/winntsp/Patch/q293826/NT4/EN-US /Q295534is.exe

Microsoft IIS 5.0

Microsoft Q293826
http://download.microsoft.com/download/win2000platform/Patch/q293826/N T5/EN-US/Q293826_W2K_SP3_x86_en.EXE