Security Hero Rotating Header Image

Vulnerability in Internet Information Services Could Allow Elevation of Privilege – 5/18/2009

Microsoft Security Advisory (971492): Vulnerability in Internet Information Services Could Allow Elevation of Privilege – 5/18/2009

Revision Note: Security Advisory published. Advisory Summary:Microsoft is investigating new public reports of a possible vulnerability in Microsoft Internet Information Services (IIS). An elevation of privilege vulnerability exists in the way that the WebDAV extension for IIS handles HTTP requests. An attacker could exploit this vulnerability by creating a specially crafted anonymous HTTP request to gain access to a location that typically requires authentication.

URL: http://www.microsoft.com/technet/security/advisory/971492.mspx

Leave a Reply

Powered by WP Hashcash

Spam Protection by WP-SpamFree

Bad Behavior has blocked 735 access attempts in the last 7 days.