Menu
The biggest bug in the IIS web server so far?

The biggest bug in the IIS web server so far?

The American security experts from eEye-Security have identified what is possibly the biggest security hole in Microsoft's Internet Information Server (IIS).

Already in the last few weeks there have been heaps of reports about security holes in IIS and one has sometimes wondered whether this is news or is it still the news from a few days ago. This time a module of the IIS is affected, which is supposed to accelerate the information search on the web server. According to reports from eEye-Security, it is not sufficiently protected against buffer overrun attacks. It will probably only take a few days until various hacker groups exploit this security gap with small tools and around 6 million web servers are in danger. However, Microsoft has already developed a patch and is literally urging the administrators to install it, which is an indication of the severity of this security gap.

Comments