Quantcast
PCWorld.com is upgrading some back-end systems. Some site features, such as user registration, may be temporarily unavailable.
Subscribe to magazine

Microsoft Patches Ten Critical Security Flaws

Cumulative patch fixes holes in IIS that could allow hackers to take over a user's system.

Joris Evers and Sam Costello, IDG News Service

  • 0 Yes
  • 0 No

Microsoft released a patch Wednesday that fixes 10 security flaws in various versions of the Web server component of Windows NT 4.0, Windows 2000, and Windows XP.

The most serious of the flaws could allow an attacker to take over a user's system, moving Microsoft to label the cumulative patch "critical" and to urge all customers hosting Web sites using the affected software to install the patch immediately.

Affected are Microsoft's Internet Information Server 4.0, IIS 5.0, and IIS 5.1, Microsoft says. IIS 4.0 is part of the Windows NT 4.0 Option Pack, IIS 5.0 ships as part of Windows 2000 Datacenter Server, Advanced Server, and Professional, and IIS 5.1 is part of Windows XP Professional, according to Microsoft.

Microsoft says it found two of the flaws itself, possibly as part of the effort to clean up its code. The software maker thanks various security vendors and experts for reporting the other vulnerabilities.

Issuing Advisories

Two of the vendors that discovered security holes, eEye Digital Security and @stake, issued advisories later Wednesday about the problems they found.

The flaw discovered by eEye would allow an attacker to remotely overflow the buffer of the Active Server Pages Internet Services Application Programming Interface filter in IIS 4.0 to execute code of the attacker's choice on the target system, eEye says in its advisory. The ASP ISAPI filter is installed by default on Windows NT/2000 servers and is used for interactive, dynamic Web content, eEye says.

More information on the issue can be found at eEye's Web site.

The second advisory, issued by security consultancy @stake, concerns a buffer overflow in the component of IIS 4.0 and 5.0 that handles .htr files. The vulnerability can be remotely exploited to cause code execution, @stake says.

A flaw in the script-mapping function of the ISAPI that handles .htr files--files used for Web-based password administration--opened this hole, @stake says.

Information Online

More information on this vulnerability can be found online.

The cumulative patch, besides plugging the new holes, also fixes all of the vulnerabilities patched for IIS 4.0 since Windows NT 4.0 Service Pack 6a and all vulnerabilities patched to date for IIS 5.0 and 5.1. System administrators are cautioned to read the caveats section in Microsoft security bulletin MS02-018 before applying the patch.

More information on the security vulnerabilities and the patches can be found on Microsoft's Web site.

  • Recommend this story?
  • 0 Yes
    0 No
  • Great year-end deals
    for small business!

  • Get 24/7 live remote AT&T Tech Support 360* service along with select Lenovo* PCs (with Intel® Core™ 2 Duo processors) and save up to 200!

    Learn more

  • HP EliteBook* 6930p Notebook with Intel® vPro™ technology and a free HP Basic Docking Station - $641 instant savings!

    Learn more

  • *Other names and brands may be claimed as the property of others. ©2009 Intel Corporation. Intel, the Intel logo, vPro and Core trademarks of Intel Corporation in the United States and other countries. All rights reserved.

Dell End of Year Deals

People who read this also read:

  • Perfect Printing Solutions Find just the right All-in-One printer for you from HP. Visit the HP Resource Center.
  • Lenovo Laptop Showcase Find out how Lenovo IdeaPads and Thinkpads balance performance and portability. Visit the Lenovo Resource Center for more info...

Sponsored Links