Hosting Provided By

plugging old IIS FTP holes

From: Douglas Schlenker <Douglas.Schlenker(at)RoyalRoads.ca>
Date: Fri Jul 18 2003 - 19:02:17 EDT

I just finished running a Nessus scan against a new server I'm bringing up. One of the "high" risk factor warning I received was this:

It may be possible to make the remote FTP server crash by sending the command 'STAT *?AAA...AAA. An attacker may use this flaw to prevent your site from distributing files
*** Warning : we could not verify this vulnerability.

Nessus solely relied on the banner of this server Solution : Apply the relevant hotfix from Microsoft See:http://www.microsoft.com/technet/security/bulletin/ms02-018.asp

I went to Microsofts website and downloaded the appropriate patch. When I went to install it, the installation failed because the patch will not install on a server that has a newer Service Pack than SP2.

Any ideas how I can fix this hole without applying the patch? (Or, is there an alternate patch for SP3 users?)

Sincerely,

Douglas Schlenker

Received on Mon Jul 21 10:27:02 2003

This message: [ Message body ]
Next message: Wetwork07(at)aol.com: "Re: Biometric fingerprint scanner"
Previous message: Stefan Osterlitz: "Re: Internet explorer history viewer"
Next in thread: Lee Evans: "RE: plugging old IIS FTP holes"
Reply: Lee Evans: "RE: plugging old IIS FTP holes"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:34 EDT

Do you need help?