Microsoft Security Advisory (971492)  

Posted by ajay karthick in ,

Vulnerability in Internet Information Services Could Allow Elevation of Privilege

Microsoft is investigating new public reports of a possible vulnerability in Microsoft Internet Information Services (IIS). An elevation of privilege vulnerability exists in the way that the WebDAV extension for IIS handles HTTP requests. An attacker could exploit this vulnerability by creating a specially crafted anonymous HTTP request to gain access to a location that typically requires authentication.

This entry was posted on 6/7/09 at 5:02 PM and is filed under , . You can follow any responses to this entry through the comments feed .


Post a Comment