Check your speedThis vulnerability involves a new variant of the 'File Fragment Reading via .HTR' vulnerability, previous variants of which were discussed in Microsoft Security Bulletins MS00-031 and MS00-044. Like the original variants, this one could enable an attacker to request a file in a way that would cause it to be processed by the HTR ISAPI extension. The result of doing this is that fragments of server-side files, such as ASP files, could potentially be sent to the attacker.
Customers who have previously disabled the HTR functionality would not be affected by this vulnerability. Microsoft recommends that all customers who haven't already disabled HTR do so, unless there is a business-critical reason for keeping it. For the latter group of customers, this patch will eliminate this vulnerability.
Did you find this download useful?
7 out of 16 users found this download useful
People who downloaded this software also downloaded...
PCSafer 2009 Internet Security 5.10
Secure and protect your PC from various harmful threats.
Rising Internet Security 21.56.32
Protect your home and office computers against all types of Internet threats.
Activity Monitor 4.41 build 2253
Monitor the time and activity of users on network computers.
Kaspersky Anti-Virus 2010
Protect your PC against viruses, spyware, Trojans, worms, rootkits, and bots
Pop Up Blocker Pro Rich Media Ads Edition 5.0.1
Block annoying Internet ads, such as videos, background sounds, Java applets, and Flash movies.
PingFederate 4.4
Use PingFederate to enable standards-based, Web single sign-on, and attribute exchange across domains.
