[thelist] Major IIS Security Hole

Judah McAuley judah at wiredotter.com
Wed Jun 20 13:32:11 CDT 2001

At 12:29 PM 6/20/2001 -0500, sgd wrote:
>Already been brought up, (even here), if you remove the script mappings you
>don't use (as pointed out in a glorious tip earlier this week), you are
>already closing these holes. That being said, it is a Good Thing to stay up
>on the updates.

It is especially important in this case because Microsoft notes that adding 
for removing various software components can restore the script mappings 
without warning you.  So you can remove the vulnerability and Microsoft 
will graciously restore it for you.


More information about the thelist mailing list