Security issues in ASP main component

Microsoft's asp has been favored by netizens and most network administrators for its powerful functions such as simplicity, ease of use, functionality, and scalability. It has a tendency to completely replace cgi, but there are also some problems here, if asp is used, your network security is greatly reduced! The following is an example. follow these steps:
1. Download the token of this file );
2. Open the "Start/Run" menu and enter the "regsvr32test. dll" command;
3. Copy the index in the decompressed package. asp to your server directory. If you are using PWS debugging, you can copy it to "c: \ inetpub \ wwwroot". NT, copy it to the corresponding directory );
4. Use IE to browse index on another machine. asp file to see what you see is the error code, but the program has actually run), then you return to your machine to see if there is an additional file under c? The name is xuankong. in fact, if I want the dat file, your c: \ autoexec. the bat file page can be opened by me and written into some commands such as "format c:/q/u". Then, when you restart the file next time, hey .)
Next let's take a look at what happened. The dll files you just copied are actually a main component I developed using objective l Basic5:
1. Open VB5 and create an ActiveX. dll file. Enter the following code:
Private Declare Function ExitWindowsEx Lib "user32 "_
(ByVal uFlags As Long, ByVal dwReserved As Long )_
As Long
Sub Xuankong () "Please do not add" private"
A $ = InputBox ("enter your name. If you enter" xuankong "" + Chr (13) + Chr (10) +
"The system generates an" xuankong "file" + Chr (10) + Chr (13) +
"Otherwise your machine may be restarted", "enter", "xuankong ")
If a $ = "xuankong" Then
Open "c: \ xuankong. dat" For Append As # Write #1, "my friend, this is an asp main component testing program"
# Write #1, "hello world! This is a test"
# Write #1, "if you see this file, the test is successful! "
Else
ExitWindowsEx & H43, 0' restart the machine using the API Function
End if
Close #1
End sub
2. Change the project name to dll, the class module to test, and then generate the dll file for this project to the c: \ windows \ system directory.
3. Enter the following code in the new index. asp file:
4. Copy index. asp to your server and debug it using the above method!
What I mentioned above is the security of the asp master component! In addition, if some authors accidentally leave System bugs when writing the asp main component again! It's even harder to find out!