Microsoft Patches Ten IIS Vulnerabilities
News IIS 5.1 is not vulnerable to CAN-2002-0079 chunked encoding memory or the .htr file request buffer overflow CAN-2002-0071.IIS 4.0 is not vulnerable to one of the cross-site scripting threats.The FTP status request DoS vulnerability will be...
[April 29, 2002, 13:39]
UFS Explorer Standard
Downloads It supports physical disks, including USB mass storage devices and set of virtual disks: VMWare, MS Virtual PC, MacOS, DMG (both raw and chunked with ZLIB compression) and plain RAW disks image files.
[September 25, 2006, 17:46]
Dman
Downloads Supports simple redirection, resume on error (where possible), downloading to RAM and to VFS, automatic installing of *.prc and *.pdb databases to RAM, "Transfer-encoding: chunked" is supported, automatic filename rename if file exist.
[September 6, 2008, 0:16]
UFS Explorer Professional Recovery
Downloads UFS Explorer Professional Recovery supports physical disks, USB mass storage devices (including some digital cameras, MP3 players etc.and set of virtual disks: Parallels Workstation, VMWare products, MS Virtual PC, MacOS .DMG (both raw and...
[January 12, 2008, 14:31]
RSA Issues Patch For Web Authentication Tool
News It] can be exploited to cause a heap-based buffer overflow by sending an overly long 'chunk' of data via the chunked-encoding mechanism. Security company RSA has patched a vulnerability in its Web authentication software.
[May 12, 2005, 13:25]
Patch Now Or Be Sorry Later
News Unfortunately, in IIS 4.0 this chunked data is handled by putting it into a buffer with no upper size limit. Another day, another security hole. But for once, Microsoft blocked this Microsoft NT 4.0/Internet Information Server 4.0 hole before the...
[March 24, 2000, 11:09]
Web Ripe For Massive Worm Attack
News The situation is made worse by a worm discovered over the weekend that makes use of the Apache flaw, a vulnerability in the mechanism for handling "Chunked Encoding". The Web is currently more vulnerable to attack than ever before, as a result of...
[July 1, 2002, 12:21]
Security Warning Too Quick For Comfort?
News Both ISS and Mark Litchfield decided to study the possibility of a hole after a similar problem known as a "chunked encoding overrun" was found in early April in Microsoft's flagship Internet Information Server (IIS) Web server software.
[June 18, 2002, 9:21]
High-risk Flaws In Corporate Security Revealed
News Chunked Encoding Vulnerability in Apache: Versions of Apache prior to 1.3.26 have a vulnerability in the way they perform decoding of requests making it possible for remote attackers to cause a buffer overflow on affected systems.
[June 20, 2008, 8:17]
