Recently, Microsoft IIS is highly exposed. Let's talk about the Microsoft IIS event today. Hackers posted malicious code on the Internet to execute attacks by exploiting Microsoft's IIS security vulnerabilities. Then Microsoft launched a survey. Today, Microsoft confirmed that, there is a serious security vulnerability in the file transfer protocol FTP of IIS 5.0, IIS5.1, and IIS6.0.
Let's explain what Microsoft IIS is. Internet Information ServicesIIS (Internet Information Service) is a basic Internet service running Microsoft Windows.
A Microsoft security expert warned that the vulnerability could cause remote code attacks on the networked systems infected with FTP services. A Microsoft spokesman said: "We have checked the attack code released on the Internet to exploit this vulnerability. At present, we have not found any attack behavior using this attack code."
The Microsoft Security Research and Protection Team announced the systems affected by this vulnerability: Microsoft IIS 5.0 Windows 2000), IIS 5.1 Windows XP), and IIS 6.0 Windows Server 2003 ). IIS 7.0 Windows Vista, Windows Server 2008) is not affected by this vulnerability.
Microsoft IIS 6.0 is less threatening than Microsoft IIS 5.0/5.1 because it is built on/GS, microsoft said no attack code using this vulnerability can bypass/GS protection.
Microsoft reminds users that only those servers that allow untrusted users to log on and create any directories are at risk. As there are no patches available, Microsoft reminds management personnel not to allow users to write data to FTP at will. The following measures can be taken: Disable FTP when not in use; do not use NTFS ACLs to create new directories; prevent anonymous users from writing data through Microsoft IIS settings.