When it comes to securing IIS, resetting default passwords is just the beginning. There are nonessential services to disable and myriad other default settings to tweak. Take our quiz to see how well you know the Web server, then drop by Web Security School where our guest instructor goes under the hood of IIS.
b. Distributed File System
c. Remote Registry Service
d. WMI Driver Extensions
9.) Which of the following vulnerabilities allows an attacker to take control of IIS?
a. ISAPI Extension buffer overflows
b. Microsoft Server Message Block vulnerability
c. Windows License Logging Service overflow
d. All of the above