Windows 2000 Exploits Published and Generalised

Further to our article on the widespread availability of WebDAV on Microsoft-IIS/5.0 sites, Roman Medina and Rafael Nunez have each published the sources to programs written to exploit the vulnerability.

Additionally, David Litchfield has produced a paper emphasizing that the problem is a core DLL in Windows 2000 that is possible to exploit without recourse to the published Microsoft-IIS WebDAV vulnerability.

Expert opinion is that no unpatched Windows 2000 machines are safe.

Netcraft's network exploration services may be useful for people managing large networks of Windows 2000 servers. In particular, we can report machines not yet rebooted since the availability of Microsoft's patch and determine availability of WebDAV functionality on those machines.

Please mail us if interested.

Posted by mhp at 27 March 2003 in Security | Print this Page



Rackspace Managed Hosting - Web Hosting - Hosting	Swishmail.com Business Email Hosting	Dedicated Servers - Apollo Hosting
INetU Managed Hosting - Dedicated Servers	DataPipe - Personal Touch, Global Reach	Web Hosting - Website Source - Ecommerce, VPS
Reseller hosting Managed dedicated server Ahosting	Web Hosting and Reseller Hosting By HostDepartment	Web Hosting UK - VPS Hosting Dedicated Server
Web Site Hosting - Network Solutions

Advertising on Netcraft

Get our RSS Feed News Updates by Email

Netcraft Services

Phishing & Security

Internet Data Mining

Internet Exploration

Performance

Advertising

Banner Advertising on Netcraft

About Netcraft

Contact Us

Webmaster