Slashdot Mirror

← Back to Stories (view on slashdot.org)

Eight New Security Holes in IIS

Posted by timothy on from the nobody's-perfect dept.

TedCheshireAcad writes: "A story at the Register asserts that MS's 'Trustworthy Computing' campaign has failed once again, with eight new IIS vulnerabilities discovered. The vulnerabilities include such delights as a buffer overflow in the ASP ISAPI filter, improper HTTP header handling, FrontPage Server Extensions problems and more goodies. Both IIS 4 and 5 are vulnerable. Thanks to eEye and @Stake for their advisories here(1) and here(2)."

2 of 46 comments (clear)

  1. Re:Wow! by RedWolves2 · · Score: 0, Redundant

    Come on now this patch came out two days ago. This site sucks for up to date news and information.

  2. Re:it's actually 10... by RedWolves2 · · Score: 0, Redundant

    It is Microsoft! Does it matter if they get the news right? They are going to get bad mouthed no matter what the news is.