Microsoft released a bulletin and patch for the buffer overflow flaw, which allows attackers to run code of their choice on a vulnerable server, on Jun. 21, 2001. [News Bytes]
I did have to chuckle a bit after reading this. A couple of MS sites were defaced because they'd left an old unpatched version of the Front Page extensions on the server. The moral of the story is, get rid of anything that your are not using. If you happen to be using the Front Page extensions (not recommended) please keep an eye on security patches.
6:46:55 PM 
|
