Description

This article is from the Windows NT Security FAQ, by Christopher Klaus cklaus@iss.net with numerous contributions by others.

06 MicroSoft IIS Web Server (Windows NT Security)

Versions prior to 1.0c were vulnerable to allowing users to execute commands
remotely and allow access to all the files on the same hard drive partition
as the IIS Server. Make sure that the web server is version 1.0c or higher.
NT 4.0 comes with IIS Version 2.0 that fixes these known problems.

Additonal Information on the IIS Web Server bugs is available at
http://www.omna.com/msiis .

Continue to:

• prev: 05 File Shares (Windows NT Security)
• Index
• next: 07 FTP Server (Windows NT Security)