Microsoft Security Bulletin MS02-028 (Version 2) [Archive]

View Full Version : Microsoft Security Bulletin MS02-028 (Version 2)

spy1

July 1st, 2002, 11:31 PM

Title: Heap Overrun in HTR Chunked Encoding Could Enable Web
Server Compromise (Q321599)
Released: 12 June 2002
Revised: 01 July 2002 (version 2.0)
Software: Internet Information Server
Impact: Run Code of Attacker's Choice
Max Risk: Critical
Bulletin: MS02-028

Microsoft encourages customers to review the Security Bulletin at:
http://www.microsoft.com/technet/security/bulletin/MS02-028.asp .

Reason for Revision:
====================
On June 12, 2002, Microsoft released the original version of this
bulletin. On July 1, 2002, the bulletin was updated to revise the
severity rating. Specifically, Microsoft has increased the severity
rating of this issue to "critical ." The revision is in response to a
significant change in the threat environment due to an increased
focus on chunked encoding vulnerabilities in general, and the
discovery of hostile code attempting to exploit similar
vulnerabilities on other platforms. Customers who have already
disabled HTR or applied this patch need not take any action.
Customers who have not disabled HTR should do so as soon as
possible. Alternately, customers who cannot disable HTR should
apply the patch immediately.

Prince_Serendip

July 1st, 2002, 11:45 PM

:) Per spy1's above posting: this does not affect users of Win 95/98/98se/XP. See below:
-{ Quote: "Who should read this bulletin: Customers hosting web servers using Microsoft® Windows NT® 4.0 or Windows® 2000.
Impact of vulnerability: Run code of an attackers choice on the system.
Maximum Severity Rating: Moderate (6/12/02)
Recommendation: Customers who have a business-critical reason for retaining HTR scripting should apply the patch immediately. All others should ensure HTR is disabled.
Affected Software:
Microsoft Internet Information Server 4.0
Microsoft Internet Information Services 5.0 " }-

Thought it might be important to clarify who is affected by this. No disrespect intended. :)

UNICRON

July 2nd, 2002, 04:07 AM

-{ Quote: " quoting: spy1 link=board=18;threadid=2122;start=0#15221 date=1025580667]
Impact: Run Code of Attacker's Choice
Max Risk: Critical
" }-

so what else is new? Man I am happy this means nothing to me anymore. Just last month, this warning would have me up half the night.

On the other hand, there were some Apache security updates the other day as well...

Hmmm, .....can't win.....Oh wait! Nobody writes exploits for the commodore64 anymore right?

javacool

July 2nd, 2002, 01:03 PM

-{ Quote: " quoting: UNICRON link=board=18;threadid=2122;start=0#15230 date=1025597264]
Hmmm, .....can't win.....Oh wait! Nobody writes exploits for the commodore64 anymore right?
" }-

Lol. You'd be rather surprised. ;)

Start using it for anything important, and I guarantee an exploit will be released/used within a short amount of time (such is the sad state of things).

If only businesses could worry about security first, and features last...

-javacool