Code Exposed by UNC Mappings and Virtual Paths Under IIS Reported March 30, 2000 by Microsoft
According to Microsoft"s report on the matter, "If a virtual directory on an IIS server is mapped to a UNC share, and a request for a file in the directory contains one of several particular characters at the end, the expected ISAPI extension processing may not occur. The result is that the source code of the file would be sent to the browser. There are significant restrictions that would increase the difficulty of exploiting this vulnerability:
VENDOR RESPONSE Microsoft has issued a patch for IIS 4 on Intel and IIS 4 on Alpha, as well as a patch for IIS 5 on Intel. Microsoft also issued a FAQ and Support Online article Q249599. NOTE: Proxy Server, Site Server, Site Server Commerce Edition and Microsoft Commercial Internet System run atop IIS. Customers using these products should apply the patch appropriate for the version of IIS they are running.
Reported by Microsoft |
Code Exposed by UNC Mappings and Virtual Paths Under IIS
0 comments
Hide comments