Patch Available for "File Permission Canonicalization" Vulnerability
Originally posted: August 10, 2000
Summary
=======
Microsoft has released a patch that eliminates a security
vulnerability in Microsoft(r) Internet Information Server. Under very
restricted conditions, the vulnerability could allow a malicious user
to gain additional permissions to certain types of files hosted on a
web server.
Frequently asked questions regarding this vulnerability and the patch
can be found at
http://www.microsoft.com/technet/security/bulletin/fq00-057.asp
Affected Software Versions
==========================
- Microsoft Internet Information Server 4.0
- Microsoft Internet Information Server 5.0
Patch Availability
==================
- Microsoft Internet Information Server 4.0:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=23667
- Microsoft Internet Information Server 5.0:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=23665
Originally posted: August 10, 2000
Summary
=======
Microsoft has released a patch that eliminates a security
vulnerability in Microsoft(r) Internet Information Server. Under very
restricted conditions, the vulnerability could allow a malicious user
to gain additional permissions to certain types of files hosted on a
web server.
Frequently asked questions regarding this vulnerability and the patch
can be found at
http://www.microsoft.com/technet/security/bulletin/fq00-057.asp
Affected Software Versions
==========================
- Microsoft Internet Information Server 4.0
- Microsoft Internet Information Server 5.0
Patch Availability
==================
- Microsoft Internet Information Server 4.0:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=23667
- Microsoft Internet Information Server 5.0:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=23665
