Microsoft patches more security holes
Microsoft on Wednesday issued a pair of security alerts addressing potential flaws that could make its software vulnerable to attackers.
The higher-rated of the two bulletins includes a patch that fixes four separate vulnerabilities in Microsoft's Internet Information Services (IIS) software. That alert, rated "important," addresses vulnerabilities that could make servers running the software vulnerable to a denial-of-service attack.
"We definitely want everyone who is running IIS 4.0, 5.0 and 5.1 to install the patch," said Microsoft program manager Stephen Toulouse. However, IIS 6 and Microsoft Windows Server 2003 are not affected by the flaws, he added.
[ Read more ]
- Advisory: Flaw in ISAPI Extension for Windows Media Services Could Cause Denial of Service (29 May 2003)
- Advisory: Cumulative Patch for Internet Information Service (29 May 2003)