You are here: silicon.com > Software > Security Strategy

Security Strategy

Microsoft IIS 'at risk from FTP flaw'

Redmond investigates system takeover threat

Tags: ftp, iis, flaw, microsoft

Printer Friendly Email Story RSS

By Ina Fried

Published: 1 September 2009 11:14 GMT

Microsoft on Monday said it is looking into a report of a flaw in some versions of its Internet Information Services (IIS) product that could allow an attacker to gain control of a system.

In a statement, a Microsoft representative said the company "is investigating new public claims of a possible vulnerability in IIS 5 and IIS 6 File Transfer Protocol [FTP]".

Read this

A-Z of security

Microsoft said it is not aware of any attacks using the vulnerability. "We will take steps to determine how customers can protect themselves, should we confirm the vulnerability," the company added.

Once it's done with its investigation, Microsoft said, it will decide how to address the matter, which could include a security update as part of its monthly Patch Tuesday or an out-of-cycle update.

In a posting on Monday, the US Computer Emergency Readiness Team (US-CERT) suggested IT administrators "disable anonymous write access to the FTP server to help mitigate the vulnerability" but added that "a proper impact analysis should be performed prior to taking defensive measures".

Original article: Microsoft investigating newly reported IIS flaw from CNET News.com

Add Comment Add comment  Printer Friendly Print story with   Email Story Email story  
In
Applications

Operating Systems

SOA/Web Services

Malware

Security Strategy


Reader Comments

This should be a good improvement
Anonymous

Click here to see all

Related Links

'You can't sell Word' ruling: Microsoft files formal appeal

Microsoft looks to reverse 'you can't sell Word' ruling

Microsoft's Bing signs deal with Wolfram Alpha

Microsoft, Amazon, Yahoo! join fight against Google Books

Microsoft kicks off mobile fightback with double OS

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business

Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business

UK ID cards rollout hit by delay as launch date revealed

Bletchley Park's World War Two codebreakers in their own words

'You're responsible for your own wi-fi security' say ISPs

'UK must up privacy safeguards following Phorm'

The top 10 technologies you need to plan for next year


  • Jobs
Technical Analyst - Automotive - Solihull

Attend knowledge transfer sessions to gain further technical appreciation Author and or amend documentation to support the transition program ...

Security Entitlements Business Analyst - London

They will be expected to develop the rule engine that controls transfer and access to data. The successful candidate will act as an interface between ...

Information Security Analyst (Attack Monitoring/Data Leakage/CISSP/CEH)

You must have previous experience in a dedicated vulnerability management function where you have been responsible for all potential attacks on a ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

CEO Dashboard Management: Why Creating Visual Reports You Can't Hide From Will Help...

Virtual Private Servers (VPS)

Looking for a fast payback? 10 Minutes with Free Tool Can Save Thousands

The Truth About Wasteful Spending on Software: How to Stop Giving Your Software Vendors...

Martin Brokers cashes in on back-up swap

VocaLink makes virtualisation pay

Sony Pictures sets sights on best IT Oscar

Co-op Group kicks "server sprawl" into touch

Arts Council gets tech troubleshooting boost

Torex tech treats Thorntons to quicker sales

Stories from the web...


Second iPhone worm: A botnet risk

Outsourcing: CIOs' tips on getting it right

Recession hitting low paid IT jobs

Pay for IT chiefs weathers the storm

Illegal downloaders crackdown: Digital Economy Bill to cut them off

Salesforce.com makes more friends in the cloud




Quick Sitemap Links: