Microsoft IIS4 File Fragment Reading via HTR Vulne

004

 
License: Freeware
Price:
$0.00
Rated:
Downloads: 0
Op. System: Windows NT
Last updated: 2001-02-16
File size: 95 KB
Publisher: Microsoft. Corp.
Related software:

Publisher description for Microsoft IIS4 File Fragment Reading via HTR Vulne

Microsoft IIS4 File Fragment Reading via HTR Vulne program icon

Microsoft IIS4 File Fragment Reading via HTR Vulnerability Patch MS01-004 is developed as a helpful and important patch which can remove a security vulnerability in Microsoft Internet Information Service. The vulnerability could allow enable an attacker, under very unusual conditions, to read fragments of files from a Web server. This vulnerability involves a new variant of the "File Fragment Reading via .HTR" vulnerability. Like the original variants, this one could enable an attacker to request a file in a way that would cause it to be processed by the HTR ISAPI extension. The result of doing this is that fragments of server-side files such as ASP files could potentially be sent to the attacker. There is no capability via the vulnerability to add, change, or delete files on the serve

Add your review

User reviews