Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Microsoft Investigates IIS Zero-Day Security Vulnerability



 By: Brian Prince
2009-08-31
Article Rating:starstarstarstarstar / 3


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
Microsoft is investigating reports of a vulnerability affecting Microsoft Internet Information Services' FTP module after exploited code surfaced on the Web. The vulnerability could be leveraged by an attacker to execute arbitrary code, officials at US-CERT warn.

Microsoft officials are investigating reports of a zero-day bug affecting Microsoft Internet Information Services in response to the appearance of exploit code on the Internet.

The exploit, which targets a FTP server remote stack overflow, was published Aug. 31 on Milw0rm.com. According to US-CERT, the vulnerability may allow a remote attacker to execute arbitrary code. The code is listed as working on IIS 5.0 and 6.0 on Windows 2000, and affects IIS 6.0 with stack cookie protection. 

Resource Library:

"We're currently unaware of any attacks trying to use the claimed vulnerability or of customer impact," a Microsoft spokesperson said. "We will take steps to determine how customers can protect themselves should we confirm the vulnerability.

"Once we're done investigating, we will take appropriate action to help protect customers. This may include providing a security update through the monthly release process, an out-of-cycle update or additional guidance to help customers protect themselves."

US-CERT suggested administrators disable anonymous write access to the FTP server to mitigate the vulnerability. Before doing so, however, admins should perform a thorough impact analysis, US-CERT advised.





  Reader Comments: Microsoft Investigating IIS Zero-Day Security Vulnerability
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Brian Prince
 


x}v6s{)^tR/ٖۚؖR9,-$!)L~bu~|.Kw;i[¥ B;ncr3 |C;ӸD;;o޼ !dߛz0idI[ O7FNͰ,U5}wU]99Ͱ5;#|9oފ;| `OS;SMu0Ǔ4ߚ1=ͩ:6|fx97)\ 3meb ^Qkс_u29JDru!pC$IDqX^'ayG"C')Oش":CRRh^P~FD;掕5[+Ț_h@a0vK]KhSQ(vRd%v6^ ;4r9Jȹ3H匝o8GD jI:`iT)11KO/GAXSTP)עfFԴ;g>U[ zcgg 1A 4YaIpl2XpqrbŃ5#Ϟ~b>4 XdU~լ7PnǞ3C2I]T],1,U-0w]'L|`<nhc"5rؗCQT`E,S-F jm]&IbT9Jur_7mݹ-Ӟ=9nAsnF_{REVI:]vήr$ CKo5-'JQ9_w{>~lr  + n$& jDT+b>MI mbCG${/@B kVQWB-")u(!ZZzo AKQza"Q}?M-~k~>EF,sAV衂ĠʠW:+֟㝩jqszr|qӹ(@:5թ[icv"5d}4>ljAEATic6QsiML@sՇtu@?wFPo]=': }!PnSw9TP"AЂNx>tWTێ]6}l2wsɹw[XLL)/ލ1?`'0/ Z-`88J E 8ԙo@7}`NAjwiC }xp Vd\Qo@' d)JI&BD(jHB !Aly[$phhd  ~CADrԂeNk@G¹3vrP.RJ Ӹ~)P*4'L4M[2;ȉ#"P9X 4gj hk%Ƽ f$ROu#iMhFff#@.G3I `urLQCb⦢;.'VXsq?7OXs;zaAXi9߃k>xGzg[6O Դa81 հlCh21B`>.{Ϊk^ UXU[\w;ıa弇d*.kpn>>{BOMnaDpI.3_hy>epGҶLo evhB=S3&e6 i!3'Xof4 m 24@Pٖk+,:+}:K_jiHHCemځbZG(J1\bP'^&äkQ M cc4z3Ŷ/Y(W˟@x #.b")xK[@ xB#3Q鎉nrij6<ͺ;.Cϱ s='75cg@~AS9g3G RB/C48c$0Wm"`aBkr3- ;_ ǂf 4}oRtr:|ꚪ;/ {aWl sWs4FuM` ;D0aNTS ȴ@a4TߴSIFeUV-Pנq2,Ǹ'q?|7"lE,@@rFe9٘Aa5Y$tFi.Z20Y8p;2U6S.³d|8^ (kJ}6ek[[ Uɍ:N2iP:tM z]VrbJ!><)=+VgP֛W[7`MtgvP2F5H1pNLGx{+bJb֍+|z&viw'*3%!kX;4vgf , BӀBD]vڢu`ӕ3DУAdz)`\EpXoH.ow\Mp?m+$ŷk\RYTqEJ9b(^f*kj0KYDWfzyܡ;^XЂk\'/>& K $6쮓4-J_w JE5P!n*r֞S)ZD {rϼt1ðaTwJ dLi~=mQRlM( ;hg*僃@S fO:V`L{W$?I8Gu*b<l_@7n`qB?nw`Yv$5mԧ꜌;Uyzv`h) .Som-;xoCV_ wBZ5(W氌ch@Cb<,Xug61CN'~.?@ 6>( I N_vh}ߋTjg 9V+rDh7{͆ؓ̆noO)/vҽ{k;ᧅsE4r7Ɛ^gwvdlL\pARetn(rQs eOr;_o`QD> PDʛ%q,KfFϑ=-Tvo{Tcs74^tc͏7wUo@!y߸SB6Mmin9c<]M-/^Ss>\Ej @OɋwGY_ Q7y;+&i4W3[okU=uU~D Rۢ}7 r' 3ZqnbLdrOB%6K÷Fp7. f_!O!%JJMץ-#2]Cnuk#G§ ,'i/qFԱQo*_2$;lߔŗc͘37Ocp௵U%%ŗ`Xx0NU{v+t~#v艸.yc-F#߂8j 93SgfDFS3\RJ?DI#][N֏_:8]%c;&-tɅ`B_vq8|!r/S`<'9[4jڤ;OD77.P*VĂbLh2>oNAr<֗MV|&n;2$ȕ'=7-曛;Y"/(Ad*scT7֊5y|}'a΀܂!q7sx `d:sV HxK]*a1?TRc)Fڇܽ8Lb(m*Q"" :F2lb̹r zՄH[`N_NYiXiҎ =&p:Ԏ|28I~hO*?,3aN2,V1Zr⠲TO0Ke3U(l}vus,"=d DA xHD.!q}1:-9ƭy ebU \pq X^oaJJ ($+, |&qPw݂naERb-0)y.#1K"͗T!IW7g<83 /ji#YIf` IȯUBne[WْҦUzEBKM氙x4l *Gu#"c@Ir!1[Я̶2m*m/ʦV~:q7Fpo@)l0O h2T@|Zd o&6lZ( T4X5W+JDPc,#v?s, @}`T4bT,EPJt" gh &*e-BO-5JT۔/N7+V\:mF3yJ^0F@7 ⯘D_m `@`ylG15$"Q6A"]jO֐1+9X+!-G0k`͌ 'lDZ@K<zmuԱPUVzF0' 'DʥJeͬNcu7NK#syBSMG(6^y!ޞAlH/ftN a9. ;Kx=1F`AA}Ѫnͩ9klxB_}?!iy pX" aq}νec ('`jRUM%+ ԘAB.S(N'g\h7Y#CAa]-Jmr^4렩~?;lzc!rD#ܲvz/ڐNa` C[ׅ.rbǬОGn҂c)gO/Qt '-L X?Q19}i%0"Ő|)HRAi}:c^ґ<6p4nӉ2 `u4t 쵤\]CX9>AxVABJ$K'D͓P|JuV7I/sffff(-W)eo7vkӿ$-= nHBHp@Y?7"=cmnZK[^+ G'ۑ5b%\kxl!|=:k HAw4áSH_!lR؛VۆM9U\ QW>YGjÏCO'E"X*AXvÁ}}TDO@@ 5BG-7H]—3eVgtJտNQ67*͟~\S%4| JOGN,^W'yfZ7b8Cjz}s:Z5lG.f~pEͱ`)`UB|tO>:E!-D@[Ԅ4zDMft- 5~qY;M}Ҁ\og+3QCjA)~sd@+!]W푧2LոZ֟Lׄ%T|qǾ6GoniskEo#٦ q@]JS9"ȹ}lZAձ&`l*V"cYQ@F\S]&QVk 1u|{Y4>-dW>Psbt}zNZTceډ5V(R)% צSʚy,,Jpi'R =1.®./y~?y ;w1O]?R^_F 1G[_dE@kYb"$$N 6\-r= Dכ7 OQ4HcUÃs"|0UAeǀ>=֢aFʼnӿHGoKJm_tmWU%V+H4k $V@ǵfcф4$ :[S2}"*v6 t=WUhyl?t)"/d~-2x ORCVjb`!zN#L 8PY=2<>v: 4"Wι}1-94i,kb| fiA i!F:w;K˟ K7Q{J$#p$j+J*%q9}J-9#R88^8aIqc)B+|Z灗E&tCr9n8%/͛I~Zz3lsq̩ٔl9/v[HkcƩSJU:Ws.}KBG(zdq<// #|rn "b\I{ gP^`mUP*$@iHQ5::@ mN󼦨hC~?z^3Zmz^CaB[7V]^1=o7+ݝAVnZt"'B<CKoWԳzXQ,ٯUV4ܘq'anZ`$v\rF̹ONĀ^mfi-nhiӀ/Q)RUdP=C D #ıC>k( c}@C &xʓGF^Gn?2rY)k۪gIKw\ꭾ=vՁbZ<<}Q,mr1F'B5쓏^At; sXGJMw-=azitGdxI(0?3҇=oF= m5H`#lNgvxۓSf;Vdrj36ѽ3boV?qbQAj| ;KF.^ah˲\M 1غeJGh5ԌxU))yql@"!Q@O@LuH@(eiir'o&'졢VxR<(5)WO~C#hMllW:hl'N…jZ4eЊ?2Ơ߄ԓ>3,1 :{nQگTeG";{X h:(Q1G)|~oqMM]Ԥ7?&|G%nNsKM ͈R$:!%H$b{=9AqmԂfzZ?׻SEď1 2K1c~EWo&Wr5 SRwE &z,myKwy |)͊g2qЅ&JZ {AFNPrdDh{߇J֝O|TB'};1l]]"k"6}8_w%9jwooWj[u{{sپ\sSMal\]db(L۝%,C rzٺhS=efTN˰LsŠXg1xixɎ(b,.6qLO|?Sf}Y QB21zS:9nzJ6RNA|zuQcGϐ:o}2oAKexh 5=Z04yO\3TYD}^ux3+ [@.w3O'c?^ 9{urͳI9ȇu2eF>{ϽOi}9?π]"c~.`Y\d1 ϋ ȠOˌ_~gGF_d^f%e\]f_O7CtAt3U}\A@?Ӄ2߃2g_e}?f>f#cn &+&~oon2/ B: >k]K(#keK"~)+P!*g 촛 z6*ϕbόW ~>{+2g#q$aL銊gmjZkǸjt16 4xԾW( V`ʼ7HnP%]}jMJ 44k 7b]ZDYQJ{R}ftE I>4˫qLzw,_YnƊ6sL1ϜOǽqn@(BhSy}oNx6KA1_w4^5a'H_hĻ+LEٞ<~en}f_qTzuҚjoD{6m'K ~MoNDTF)0B E0dp=u4\'O!4ܵaj|t5RwÅzA|3v1h>,H$ΆB(% J\'׈d6-'3tḧ$J5w1 ط VHR`"8" T:QȀFuo*%K0+=q͐E1Vѕ !'LBH`czķmcXڬxY%awa+h;R#?@(sYFlOBfC3 d *6߄^Ėٵz"ni,Twz:e:@@4ǭaƱr@8k *xq~6mC*awL-O0U]/Ѕ&C]"s>oQ^ܺ] F2X2qdx6@C V{2n#2Olo%OB;6?_%ƚ@}jI\3u{DT{aw9..]C?;- /Ǝq:wpTQ6`_CN%7F/0|18𲙀a4|V_s1m&DƤAֽhD#Z#7XYNƄ_֌Y݈0;_q%)e:M6 u;.,`@S*}1 Ajl8ӕsXKwUW.+i~<,x`r÷JM_Ckg0P&2nNj\|(0IicI`g{,IL nb[>/~y$~.פ7AMx˄MYRʣm^+%:I㿄$Rvb/Cf@{ SN'B!֬Y`_EB `;*3Ur& f:XH{t<H,9o%RJXHVKPsEIoX;ql>:+sojC}|EBUuÌC 1̅轚'J |2}Uhn ǁobY{6\$%4-ϫ>E![ѷ$ķ=E΄Jr. =Vo]imV 'l%y '_! q6G!qiб ߞ(l-Eǝ.| };{/ݤd-+2lB%vlHYE҆_Oo&Ϻ#И#B. /(:NOe3{Z %&_H›*z|XVb 04*0}?hU.DƽjݢCJ^3 F5' oxSX }JP]4lmAb ;ܩʱLm`$Ңy9v93E~c]>8Vlewɴ9:k+Thި'O,Eܗ1s1GN g5Z{|iKeӷ mr?q,r?]4LCi61Ĝbdr*0_m9 tv.2h#ahBgybSS2sؒĽYߊwg@sO{̊jg +#_eǎskݧ{7#:4^8{uD ׿KX:bi=D~/;o e^g05{c)@4Xk<H T==vV͠ .VALaKg'}Mԅ|X|=#bŒfC-(ru/ v'xk^'=Vj}C XwzG "؂gj@ L/o,")A_ϠPJQ)Ռ,+~jx @ RPƦ04mQ3A,;|caK8(~t=a+EH:?+:+GTv@:=zG32 CJЇ) {PCY0u> ^*;BML !DYfk8`K'^hnZJKT@MK(}:8HR7diA%V@obQ d IeMzswq~q`0Rv=ex5ʎ'㫹A}'=e0&qov%Z0y3B:U[.qAkwi̪Ấ4[A3 ]TNКT-z3_ ߁@TFt G yЈPph,Am&[}2s1?emrH: οQ`X@__> j>}EM9ڥ2\0#7oϦCVQtlf_YoDiB taŞDP*M~-K(cxwI',~,l}С 6/֍`77:<`'2WD nt-Rst)Nǻ=~FP&A/xf-T7zGae\k.nrhWn7bl߰7^vJ *7&2ƲN9.(2˱guƷArl&fmu3t #1<&X8Vчstbv.v?̪AHcAqߎs]φؘޢኸ'6DwD# )B89X}|W>zEE"(h\Xp2pYNB Y'wqBZ5a!Зݨ@`kH ߉&J2"=$+шa̔J@'9BmH يkQCt_lȻU,}zQgHڧU]iwZ1 o11J4ĄH4sV '_BڦKšTXp7Lo"%K ӽ% &ibB$9! V,|JašLj DL8 ܡ~N^zRW^%ϻ kx+|v7ؘ`HU it9=zvѿ!8\j֧^9,%p#xIMFYg#"Q)+u8PjŪR9iJ8-J53\P8v;\6y&503:KǖLc술7xp Tޡ+K&nqO|D!ث\C@xka4ɾ?W~˾pں:Z,Y׫u~mFJ }%>F8y?\}=^nG_w?\aA itn-/ӽ>iAPOhI} bH&za,:s%#d z*3]BY(D4߷0-xc>D{r jE[6CDlom'k1_\/a>evX(1ʃ$ĤB1eTLdѻNʱqtggt2+E7w?lBA