Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Handlers Diary Blog - WebDAV write-up InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

WebDAV write-up

Published: 2009-05-27
Last Updated: 2009-05-27 17:50:15 UTC
by donald smith (Version: 1)
0 comment(s)

SusanB wrote in today to tell us about a really good write-up on understanding Microsoft’s KB971492 IIS5/IIS6 WebDAV vulnerability by Steve Friedl of is available here.
http://unixwiz.net/techtips/ms971492-webdav-vuln.html
This was written because Steve and some of others at unixwiz.net found Microsoft’s "guidance confusing for users who were not IIS experts".  This includes a very good flowchart that should assist anyone who is confused, detailed descriptions of WebDAV, remediation ideas, and links to other WebDAV references.

0 comment(s)
Diary Archives