Web site ASP Vulnerabilities Small summary

1. The IIS3/PWS loophole
WIN95+PWS running ASP program, just add a small dot in the browser address bar ASP program will be downloaded down.



2. The IIS4 loophole
IIS4 a well-known vulnerability is: $DATA, is the ASP's URL after adding these characters, the code can also be seen, using IE view source can see the ASP code. Win98+pws4 doesn't have that problem.

There are several ways to solve this problem: one is to set the directory to be unreadable (ASP can still execute), so that the HTML file can not be placed in this directory, otherwise HTML can not browse, the second is to install the Microsoft-provided patch, the third is to install IE4.01SP1 on the server.



3. Problems in support of ASP's free homepage
ASP1.0 's example has a file to view the ASP source code,/aspsamp/samples/code.asp. If someone has uploaded the program to the Web, he can see the other person's program.

Since the ASP program can be people get, others can easily know where your database is placed, the site's Access database may be downloaded.



4. Threats from the FileSystemObject
IIS4 's ASP file operations can be implemented through file system object, including reading and writing of text files, directory operations, copy renaming of files, and so on. Using Filesystemobjet can tamper with downloading any file on a FAT partition, even if it is NTFS, and can also be corrupted if the permissions are not set properly. The network administrator should build the Web directory on an NTFS partition, not a web directory with full control, but a network administrator to be fully controlled.