Release DateMay 22, 2009 |
Severitymedium |
ImpactSecurity Bypass: Remote attackers can bypass security checking of vulnerable systems. |
DescriptionThis indicates an attack attempt to exploit an authentication-bypass vulnerability in Microsoft windows IIS server.The vulnerability is caused by an error that occurs when the vulnerable software handles a malicious Web DAV request. A remote attacker may exploit this to bypass the authentication via a crafted HTTP request. |
Affected ProductsMicrosoft Internet Information Services 5.0Microsoft Internet Information Services 5.1 Microsoft Internet Information Services 6.0 |
Recommended ActionsRefer to Microsoft Security Advisory 971492 for the suggested workaround:http://www.microsoft.com/technet/security/advisory/971492.mspx |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2009-1535 |
Reference/shttp://technet.microsoft.com/en-us/security/bulletin/ms09-020.mspx (MS-ID)http://milw0rm.com/exploits/8806 http://milw0rm.com/exploits/8765 http://www.securityfocus.com/bid/34993 (BugTraq) http://www.skullsecurity.org/blog/?p=285 http://www.microsoft.com/technet/security/advisory/971492.mspx http://www.frsirt.com/english/advisories/2009/1330 (FrSIRT) http://secunia.com/advisories/35109/ http://milw0rm.com/exploits/8704 |
