Previous
Windows 2000 Security Patch: Unchecked Buffer in ISAPI Extension Could Enable Compromise of IIS 5.0
Downloads Microsoft has released a patch that fixes a security vulnerability in IIS 5.0 resulting from an unchecked buffer in the .printer ISAPI extension. A malicious attack from this vulnerability would lead to a full compromise of the server.
[September 13, 2007, 14:15]
Linux-based websites 'perform better'
News The company says that, although the websites it surveyed were more frequently based on Microsoft's IIS web server platform running Windows than on Apache running Linux, the latter option performed better in terms of both uptime and load time.
[June 20, 2007, 12:46]
MS posts fix for IIS security hole
News Microsoft has posted a description and fix to prevent hackers causing Internet Information Server (IIS) to crash when they enter certain URLs. It forces IIS to become unavailable for a short time and is easily remedied by restarting the Web server.
[June 23, 1997, 13:18]
Linux servers 'attacked more often'
Talkback Not suprising is you consider Linux is used by the overwhelming vast majority of personal and hobby websites which due to the amateur nature of such sites are never going to be as secure as commercial websites often hosted by commercial web...
[February 20, 2004, 14:40]
MSDN Webcast: Getting Hands-On With ASP.NET for IIS Administrators and Developers (Level 200)
White Papers This webcast looks at key aspects of ASP.NET - from a Microsoft Internet Information Services (IIS) administration perspective. If you're a Web site administrator, you've probably been asked many times to modify settings for Microsoft ASP.NET...
[May 20, 2005, 0:00]
New virus downloads itself from Web pages
News A Code Red-like component will exploit the so-called index-server flaw in any Microsoft IIS Web server not patched against such attacks. Antivirus companies are reporting a high incidence of a new virus, which they say is spreading fast by using...
[September 18, 2001, 18:28]
11,000 IP addresses found on accused hacker's PC
News Aaron Caffrey, whose father is a software engineer and mother is a lecturer in IT, allegedly used a well-known 'Unicode' exploit to take advantage of vulnerabilities in Microsoft's IIS Web server software.
[October 8, 2003, 16:20]
Spyware and the law
Talkback The Apache Web server running on Linux or one of the various flavors of Unix (Solaris, HP-UX, AIX, SunOS, BSD-OS, FreeBSD, NetBSD, and especially OpenBSD) has been more secure than Microsoft IIS running on Windows.
[November 15, 2004, 15:33]
Update for controversial network security tool
News Version 1.3.6 of SAINT fixes compilation problems on Sun Solaris 7 and a false alarm that was formerly generated for writable FTP directories on Microsoft IIS servers. SAINT is based on Dan Farmer and Wietse Venema's controversial security scanning...
[February 1, 1999, 17:40]
Security overview? Read Internet Lockdown
News This sample Web site search page comes installed with Microsoft's IIS. At 312 pages, it's relatively small, so you can quickly browse and study essential information. The chapters are clearly written, with frequent cross-references to details...
[June 26, 2002, 11:16]
Nimda hits broadband users
News The Nimda worm uses several methods to propagate itself, including email attachments and IRC, but it's most worrying property is a Code Red-like ability to exploit known weaknesses in Microsoft's IIS Web server software.The Nimda virus -- its full...
[September 19, 2001, 18:20]
OpenOffice developers clear Visual Studio licensing hurdle
Talkback Most of the web runs on Apache, and that's despite Microsoft now bundling IIS with Windows Server. So why do so many people use .Net? They must be like sheep. This is really expensive - even in comparison with a developer's salary in the UK.
[February 16, 2005, 11:27]
BSA teams up with IiS on SAM
News At the same time, Investors in Software (IiS) has taken on its 17th member organisation, HP, which will join the likes of Microsoft, Symantec, Ernst & Young, Deloitte and Oracle in addressing some of the issues around software asset management (SAM).
[June 26, 2007, 17:36]
Nimda worm hits banks
News The news bodes poorly for banks who should have learnt their lesson from Code Red -- the predecessor to Nimda -- and protected their servers against the vulnerability in Microsoft's IIS server software that the two worms exploit.
[September 20, 2001, 18:15]
ISPs cut off virus-infected customers
News Nimda can also be spread from infected servers running Microsoft IIS software, which it uses to attack other servers across the Internet. British Internet users who fail to protect their machines against virulent computer viruses such as Nimda...
[October 10, 2001, 15:51]
Quick Guide: Wireless Networking - ISO
White Papers This collection of resources, crafted especially to review essential Windows Server 2003 fundamentals, addresses critical topics such as Active Directory, Component Services, IIS, Terminal Services, load balancing and clustering, and even network...
[September 29, 2009, 1:22]
Hackers attack Government Web site
News They are known to use well publicised weaknesses in Microsoft's NT operating system and its Web serving software IIS. Computer crackers broke into the British government's Web site for the European single currency this Sunday, posting insulting...
[March 12, 2001, 15:07]
The potential problem with the IIS 6 issue is......................
Talkback The larger potential problem with the IIS 6 issue is that it has the potential for malicious remote hackers to view and upload files to the server by taking advantage of a bug in the way that Microsoft software’s processes Unicode tokens do.
[May 20, 2009, 1:54]
Red Hat Tux 2.0 blows away Apache
News The next version of IIS (which ships with Microsoft Corp.s Whistler project) uses several ideas introduced by Tux, including the kernel-space design. In most cases, a public benchmark is really nothing more than a transaction race where bragging...
[June 19, 2001, 15:55]
The latest top 10 Linux/Unix security holes
News It is also less vulnerable to hacks than Microsoft's IIS, but that doesn't mean there is no need to update Apache or regularly check for newly discovered vulnerabilities. SANS and the FBI have once again teamed up and released an updated version of...
[November 4, 2003, 11:10]
