---

PC Week: Security firm exposes Windows NT vulnerability

“Nearly every Windows NT-based Web server on the Internet is
vulnerable to a newly discovered security hole that lets a
malicious hacker take over the server — and, in some cases, the
network to which it is attached — says a network security
company…”

“Believing that Microsoft “was not giving the problem the
attention it deserved,” eEye released not only a description of the
hole but two working demonstration programs that allow anyone to
break into an NT server running Internet Information Server 4.0.
The break-in code appears to work on any server from which a Web
page can be retrieved, even if a firewall is present…”

“Microsoft, however, took exception to this philosophy.
“Responsible security companies do not provide tools that can be
used to attack innocent people,” said Microsoft security manager
Scott Culp.”

Complete
Story

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis