[thelist] Major IIS Security Hole
Judah McAuley
judah at wiredotter.com
Wed Jun 20 13:32:11 CDT 2001
At 12:29 PM 6/20/2001 -0500, sgd wrote:
>Already been brought up, (even here), if you remove the script mappings you
>don't use (as pointed out in a glorious tip earlier this week), you are
>already closing these holes. That being said, it is a Good Thing to stay up
>on the updates.
>
>sgd
It is especially important in this case because Microsoft notes that adding
for removing various software components can restore the script mappings
without warning you. So you can remove the vulnerability and Microsoft
will graciously restore it for you.
Judah
More information about the thelist
mailing list