You don't know what you are talking about.
There is no serious remote vulnerability for IIS6.
Those results are just crappy lame "flaws" written by crappy lame "hackers" looking for fame.
When I first heard about Blue Security's idea it sounded very cool.
Blue Security's idea is to submit bogus entries for input fields like name, address,... in order to fill the database with crap.
However, what do you do if the website has a captcha on the oder form?
You are pretty much f*cked up.
I wanted to check it out with real life spam.
So, I opened my spam folder and choose the first spam email from this list.
Visited the website adverstised here and looked for the order form.
And here it was: a really hard captcha.
Slashdot Mirror
You don't know what you are talking about. There is no serious remote vulnerability for IIS6. Those results are just crappy lame "flaws" written by crappy lame "hackers" looking for fame.
You can find the ad on mcafee's homepage. http://www.mcafee.com/us/local_content/misc/vista_ position.pdf
When I first heard about Blue Security's idea it sounded very cool. ... in order to fill the database with crap.
Blue Security's idea is to submit bogus entries for input fields like name, address,
However, what do you do if the website has a captcha on the oder form?
You are pretty much f*cked up.
I wanted to check it out with real life spam.
So, I opened my spam folder and choose the first spam email from this list.
Visited the website adverstised here and looked for the order form.
And here it was: a really hard captcha.
Windows 9x computers are not vulnerable.
:n ony mous.html
Only NT/2k/XP/.NET RC1
It's not working when NETBIOS is not enabled or RestrictAnonymous is set to 2.
Check this link
http://www.securityfriday.com/Topics/restricta