info
discussion
exploit
solution
references
Microsoft IIS Authentication Remote Code Execution Vulnerability
Solution:
The vendor released an advisory and updates to address this issue. Please see the references for more information.
Microsoft IIS 6.0
Microsoft Security Update for Windows Server 2003 (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=0761C207-5465 -4F42-B61F-BD02EFCEF27D
Microsoft Security Update for Windows Server 2003 for Itanium-based Systems (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=F1F3E524-8AC6 -4210-A3A8-4FFC58A606EA
Microsoft Security Update for Windows Server 2003 x64 Edition (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=023572FF-CE5D -4428-A96B-1245DB6FF312
Microsoft IIS 7.0
Microsoft Security Update for Windows Server 2008 (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=84A54246-5D9E -49E2-8170-AF48B43F984D
Microsoft Security Update for Windows Server 2008 for Itanium-based Systems (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=8AD19EBA-9821 -48B4-A942-4EE4F002F913
Microsoft Security Update for Windows Server 2008 x64 Edition (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=38286E43-89A6 -4895-8FF9-69452DF38706
Microsoft Security Update for Windows Vista (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=01382926-2313 -4769-A0A5-262C4F9F18A1
Microsoft Security Update for Windows Vista for x64-based Systems (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=7FB6F2B8-C7A6 -4239-99F3-CF3AACF89B0F
Microsoft IIS 7.5
Microsoft Security Update for Windows 7 (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=588167CB-F62A -4FB8-8A18-AC15DC322495
Microsoft Security Update for Windows 7 for x64-based Systems (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=1C45D0C8-1629 -470B-8167-C6BF66054595
Microsoft Security Update for Windows Server 2008 R2 for Itanium-based Systems (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=869E900A-0063 -4D8B-9B7C-7D12F6BE12CD
Microsoft Security Update for Windows Server 2008 R2 x64 Edition (KB982666)
http://www.microsoft.com/downloads/details.aspx?familyid=5D9B7705-6280 -4D2E-94FA-3160B3CE5CFA
Privacy Statement
Copyright 2010, SecurityFocus
