Bugtraq mailing list archives

Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability

From: Robert Bihlmeyer <robbe () ORCUS PRIV AT>
Date: Wed, 21 Mar 2001 18:45:15 +0100

Microsoft Security Response Center <secure () MICROSOFT COM> writes:

Personal Web Server is, of course, not intended to host web sites on the
Internet.


I hope that's stated prominently enough in its documentation. Perhaps
the name should be changed to "Intranet Server" or somesuch. Most
people associate "Web" with the Internet...

One doesn't even have to scan oneself,
<URL:http://www.netcraft.com/Survey/Reports/0102/byserver/Microsoft-PWS-95/com.html>
and friends provide a nice list of sites. Nothing compared with IIS's
marketshare of course ...

--
Robbe

Attachment: signature.ng
Description:

Current thread:

Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Dinos Pastos (Mar 19)
- <Possible follow-ups>
- Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Microsoft Security Response Center (Mar 20)
  - Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Dinos Pastos (Mar 20)
  - Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability David F. Skoll (Mar 20)
  - Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Michael Brennen (Mar 21)
  - Re: Microsoft - Personal Web Server Extended UNICODE Directory Traversal Vulnerability Robert Bihlmeyer (Mar 21)