KezNews.com
DownloadsOther NewsForumBlogsWallpapersJokewareSearch
Downloads:
Microsoft removes VM hardware requirements,..
Opera 10.5 for Windows Free Download
Internet Explorer 9 Platform Preview Now Av..
Windows 7 UNIX Free Resources Available for..
Download Windows 7 RTM Stability and Reliab..
Free Windows 7 Shamrocks Theme Pack
Recent Forum Posts:
3dvia composer 2010 v6.5.1.1436 v6r2010x hf1 for windows 32/
Sweet home 3d 2.3 portable multilanguage
How to make it in america s01e06 hdtv xvid-notv (single file

News letter:


Enter Your E-mail:
Top Downloads:
WAT Update (KB971033) Disables Windows 7 Activation Cracks with Dynamic Signature
Download Windows 7 RTM Cracks Killer
Windows 7 ULTIMATE x86 and x64 FULLY ACTIVATED!
Windows 7 RemoveWAT v2.2.5.2
Test Windows 7 Professional Online for Free
Download Windows 7 RTM Stability and Reliability Updates
Download ShellFolderFix to Restore the Window Position in Windows 7
Advertisements:

Windows 7 RTM 7600.16385.090713-1255 HERE !

How to activate Windows 7 RC build 7600, 7264, 7231 and olders

Microsoft Security Advisory: Vulnerability in IIS

section: microsoft, for your questions: KezNews forum, 19.5.2009

    Tip: Click here to update all your PC's outdated drivers

Microsoft is investigating new public reports of a possible vulnerability in Microsoft Internet Information Services (IIS). An elevation of privilege vulnerability exists in the way that the WebDAV extension for IIS handles HTTP requests. An attacker could exploit this vulnerability by creating a specially crafted anonymous HTTP request to gain access to a location that typically requires authentication.




We are not aware of attacks that are trying to use this vulnerability or of customer impact at this time. Microsoft is investigating the public reports.

We are actively working with partners in our Microsoft Active Protections Program (MAPP) and our Microsoft Security Response Alliance (MSRA) program to provide information that they can use to provide broader protections to customers.

Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.

Mitigating Factors:

File system ACLs are enforced. This vulnerability bypasses the IIS configuration that specifies which authentication is allowed, but not the file system-based ACL check that verifies whether a file is accessible by a given user. A successful exploit of the vulnerability would still restrict the attacker to the permissions granted to the anonymous user account on file system ACL level. Therefore this vulnerability cannot be used to exceed the level of access granted to the anonymous user account through file system ACLs. The default anonymous user account is configured as the IUSR_ account.

source: microsoft.com

  >> Click Here to Run a Free Scan for PC Errors <<

send email Send link 2 friend  |  Permalink
<< previouse article
Windows 7 RC Windows Media Center SDK 6.0		 next article >>
Disable Aero Snap Auto Maximize and Arrange Window in Windows 7

MORE RELATED ARTICLES:
Microsoft Baseline Security Analyzer 2.1.1 Vulnerability Scanner for Windows 7 and Windows Server 2008 R2 || Microsoft set to fix 17 year old Windows vulnerability next week || Windows has a 17 year old un-patched vulnerability || Security Tab Fixer for Windows XP - Activate Security Tab Under File, Folder Property Menu || Windows 7 RC Immune to 0-Day DirectX Vulnerability

Comments(2)

Go away put the site down idiot

By Chick narris on 20.05.2009 - 19:05
there's a vunerbility in ya fuqing brain kezmoran go find a job and dont infect other peeps computers otherwise obama puts you shaved hiney in gitmo and let you rape by irakies which is good :)

okpkpk

By jouopjko on 21.05.2009 - 13:05
o8oihjoi


No new comments are allowed for this article.

For your questions use our KezNews Forum