|
|
Family: Gain root remotely --> Category: destructive_attack
IIS .HTR overflow Vulnerability Scan
Vulnerability Scan Summary
Tests for IIS .htr ISAPI filter
Detailed Explanation for this Vulnerability Test
The remote server is vulnerable to a buffer overflow in the .HTR
filter.
A possible hacker may use this flaw to execute arbitrary code on
this host (although the exploitation of this flaw is considered
as being difficult).
Solution:
To unmap the .HTR extension:
1.Open Internet Services Manager.
2.Right-click the Web server choose Properties from the context menu.
3.Master Properties
4.Select WWW Service -> Edit -> HomeDirectory -> Configuration
and remove the reference to .htr from the list.
See MS bulletin MS02-028 for a patch
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
