
	Home > Security Tips > Web Security Advisor > Getting IIS patched fast!

Security Tips:

EMAIL THIS

TIPS & NEWSLETTERS TOPICS

WEB SECURITY ADVISOR

Getting IIS patched fast!

James Michael Stewart
07.08.2003
Rating: -3.67- (out of 5)

Digg This!

StumbleUpon

Del.icio.us

In May of 2003, Microsoft released a cumulative hotfix collection for IIS 4.0, 5.0 and 5.1. You may recall that these versions ship with Windows NT Server 4.0, Windows 2000 Server/Professional and Windows XP Professional. Some have labeled this hotfix collection a security rollup, but Microsoft did not assign it such a name.

This cumulative patch is detailed in Microsoft Security Bulletin MS03-018.

This patch includes all security related hotfixes released individually since service pack 6a for Windows NT 4.0 for IIS 4.0, since SP2 for Windows 2000 for IIS 5.0 and includes all hotfixes for Windows XP's IIS 5.1. In addition to all of these previously released hotfixes, this patch also includes several new and previously unreleased security patches. These new patches address various issues including a cross-site scripting vulnerability, a buffer overrun and several denial-of-service vulnerabilities.

None of these new security patches are identified as critical issues. However, it is my opinion that you should patch all known security holes no matter what the current risk level is. Any security hole is still a security hole. Just because the threat or risk is low right now, doesn't mean that your system will be protected by probability. Remember, it only takes a single instance of an attack to infiltrate or decommission a system.

Depending on your configuration, you may not explicitly need this rollup. For example, you may not need it if you are running IIS 5.0 and are not using ASP, you've used IIS Lockdown to disable Ssinc.ddl and WebDAV, and users cannot upload files. In such a case, you only need to ensure that you've installed all previously existing hotfixes and you can skip this rollup for now. However, be sure to double-check your environment against the mitigating factors detailed in the security bulletin before deciding to forego this cumulative patch.

About the author
James Michael Stewart is a partner and researcher for ITinfopros, a technology-focused writing and training organization.

For more information, visit these resources:

Solution Center: Web server security
Strom's Security Tool Shed: Secure IIS/Enterprise Web Protector safeguard your Web server
News & Analysis: New critical IIS buffer flaw exploited

Rate this Tip
To rate tips, you must be a member of SearchSecurity.com. Register now to start rating these tips. Log in if you are already a member.

BROWSE BY TAG

Web Servers, Infrastructure and Network Security, Securing your Products/Platforms, Microsoft, Common Vulnerabilities and Prevention Tips, Patches/Patch Management, Application and Platform Security, Enterprise Vulnerability Management, Security Patch Management, Web Security Tools and Best Practices, Web Server Threats and Countermeasures, Web Application and Web 2.0 Threats, Securing the Internet and E-Commerce, Web Security Advisor, VIEW ALL TAGS

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Web Servers
	The best of SearchSecurity.com
	Infosec Know IT All Trivia: Web server security
	Banish .htaccess from your Apache server
	Comparing Microsoft IIS and Apache Web servers
	Securing Web servers
	Securing servers: Vendors offer everything from common sense to rocket science
	Security Top 10 Update

Infrastructure and Network Security

VPNs: IPsec vs. SSL

Sensitive student data cracked at U. of Georgia

Microsoft patches IE spoofing problem

Geer slams Windows dominance, calls for government intervention

IE update clears up spoofing issue

Countdown begins for Mydoom DDoS attacks

Microsoft to disable spoofing syntax in IE

IE flaw could fool users in illicit downloads

Mydoom variant targets security features, Microsoft

Hackers scanning for ports opened by Mydoom

Securing your Products/Platforms

Sensitive student data cracked at U. of Georgia

Microsoft patches IE spoofing problem

IE update clears up spoofing issue

Countdown begins for Mydoom DDoS attacks

Microsoft to disable spoofing syntax in IE

IE flaw could fool users in illicit downloads

Mydoom variant targets security features, Microsoft

Hackers scanning for ports opened by Mydoom

Dangerous, familiar application vulnerabilities top list

Potent Mydoom worm flooding inboxes

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

Research Solutions for Network Security, Access Control and Security Threats

View this month\\'s issue and subscribe today.

Apply online for free conference admission.

SEARCH :

Site Index

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2003 - 2009, TechTarget \| Read our Privacy Policy