WebDAV Buffer Overflow Attack Compromises IIS 5.0

← Back to Stories (view on slashdot.org)

WebDAV Buffer Overflow Attack Compromises IIS 5.0

Posted by timothy on Monday March 17, 2003 @09:50AM from the what-this-old-thing dept.

rf0 writes "Well CERT is reporting a new overflow attack for IIS 5.0. Microsoft has released a bulletin. Better download those patches and fix another security hole." According to this CNET story, Microsoft says that this is already being exploited, at the very least since last Wednesday.

14 of 367 comments (clear)

Min score:

Reason:

Sort:

yup by Anonymous Coward · 2003-03-17 09:52 · Score: 4, Funny

(looks at watch) its monday again... time to go patch my IIS
1. Re:yup by Groo+Wanderer · 2003-03-17 10:57 · Score: 4, Funny
  
  Having to watch over a handfull of IIS machines for several companies, I can say, with some authority, that if you only patch weekly, you are in trouble. MS often releases several critical patches per week, get on the ball.
  
  -Charlie
  
  (This was origionally menat to be sarcasm, but then I wnet to the windows update and looked at the entire patch list, not the rollups. It really is as bad as I was thinking. As that great philosopher Pepe LaPew says, *LeSigh*.)
Patch? by Iamthefallen · 2003-03-17 09:53 · Score: 4, Funny

Better download those patches and fix another security hole.
Well duh, "patch my IIS", it's monday isn't it?

--
Wax-Museum Fire Results In Hundreds Of New Danny DeVito Statues
1. Re:Patch? by mrjive · 2003-03-17 09:54 · Score: 5, Funny
  
  More like "every day that ends in -day"
  
  --
  If you can't beat them, arrange to have them beaten. -George Carlin
Another day, another Microsoft bug by RighteousFunby · 2003-03-17 09:54 · Score: 4, Funny

When they get a bug free Windows, they'll have to put some in just so bored /. readers have something to laugh at....

--
If you're happy and you know it read my blog
Bah, the Internet by Captain+Beefheart · 2003-03-17 09:54 · Score: 5, Funny

I don't know why anyone uses it anymore. I'm switching back to Morse Code. Who's with me?
1. Re:Bah, the Internet by Anonvmous+Coward · 2003-03-17 10:18 · Score: 5, Funny
  
  "I don't know why anyone uses it anymore. I'm switching back to Morse Code. Who's with me?"
  
  Shut the ..-. up!
  
  =D
OMG! by Anonymous Coward · 2003-03-17 09:56 · Score: 4, Funny

Cue 2,000 microsoft bashing messages...
1. Re:OMG! by NewbieProgrammerMan · 2003-03-17 09:59 · Score: 5, Funny
  
  I hope you don't have a static buffer allocated for those messages, because it'll....ummm...overflow.
  
  --
  [b.belong('us') for b in bases if b.owner() == 'you']
I'd uninstall it but... by OffTheLip · 2003-03-17 09:58 · Score: 5, Funny

I was ready to uninstall IIS when it occured to me that Exchange 2K needs it. I was ready to uninstall Exchange 2K when I realized users would not be able to function. Whew, luckily I came to my senses...
Re:Again... by zzxc · 2003-03-17 09:59 · Score: 5, Funny

>Why is the code that the web server has access to
>change allowed to take over the system?

Because it is "trusted".
Re:This is news? by mmol_6453 · 2003-03-17 10:02 · Score: 5, Funny

Between getting rooted and being automatically subject to license agreements, I'd rather get rooted.

--
What's this Submit thingy do?
CERT can save money... by huhmz · 2003-03-17 10:05 · Score: 4, Funny

If CERT would just move their headquarters to the IIS devs room in redmond, that would probably save a lot of money for CERT. They should be a part of the regular IIS dev team.
Exploited! by DarkHelmet · 2003-03-17 10:11 · Score: 4, Funny

Microsoft says that this is already being exploited, at the very least since last Wednesday.
And I thought that Penguin on the Microsoft home page looked at little out of place.

--
/^[A-Z0-9._%+-]+@[A-Z0-9.-]+\.[A-Z]{2,4}$/i