Microsoft tweaks IIS patch
Microsoft has tweaked one of the security updates it released last week, after customers reported installation problems.
The issues affected MS06-034, which addressed a remote code execution flaw in IIS. Microsoft said in its bulletin that attackers could exploit the vulnerability in its Web server software by constructing a specially crafted Active Server Pages .asp file, potentially allowing remote code execution if the IIS processes the specially crafted file.
[ Read more ]