Date Author Title
2015-04-15Johannes UllrichMS15-034: HTTP.sys (IIS) DoS And Possible Remote Code Execution. PATCH NOW
2010-12-22John BambenekIIS 7.5 0-Day DoS (processing FTP requests)
2010-06-09Deborah HaleMass Infection of IIS/ASP Sites
2009-12-29Rick WannerMicrosoft responds to possible IIS 6 0-day
2009-12-28Johannes Ullrich8 Basic Rules to Implement Secure File Uploads http://jbu.me/48 (inspired by IIS ; bug)
2009-12-27Patrick NolanPressure increasing for Microsoft to patch IIS 0 day
2009-12-24Guy BruneauMicrosoft IIS File Parsing Extension Vulnerability
2009-09-08Adrien de BeaupreMicrosoft Security Advisory 975191 Revised
2009-09-04Adrien de BeaupreVulnerabilities (plural) in MS IIS FTP Service 5.0, 5.1. 6.0, 7.0
2009-05-24Raul SilesIIS admins, help finding WebDAV remotely using nmap
2009-05-21Adrien de BeaupreIIS admins, help finding WebDAV
2009-05-15Daniel WesemannIIS6.0 WebDav Remote Auth Bypass
2009-01-12William SaluskyWeb Application Firewalls (WAF) - Have you deployed WAF technology?
2008-04-18John BambenekIIS Vulnerability Documented by Microsoft - Includes Workarounds