Code: p1103 Severity: Warning
Description: This event is generated when an attempt is made to exploit a buffer overflow associated with chunked encoding processing of HTR in Internet Information Services (IIS). Impact: Remote Access. If the exploit is successful, an attacker can gain remote access of the target host. Corrective: Apply the appropriate patch: Microsoft IIS 4.0: http://www.microsoft.com/Downloads/Release.asp?ReleaseID=39579 Microsoft IIS 5.0: http://www.microsoft.com/Downloads/Release.asp?ReleaseID=39217 Investigate running the IIS Lockdown Tool to disable HTR functionality.
|
