MS.IIS.IISadmpwd.HTR.File.Access.Security.Bypass
Description
This indicates an attack attempt to exploit a Security Bypass vulnerability in Microsoft Internet Information Services (IIS).
The vulnerability is due to insufficient sanitization of user supplied inputs in the application when handling HTTP requests. A remote attacker may be able to exploit this to bypass security checks on vulnerable systems to access certain files.
Affected Products
Internet Information Server 4.0
Internet Information Server 5.0
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://technet.microsoft.com/library/security/ms00-031?f=255&MSPPError=-2147217396
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |