Netcraft survey for June 2002
A June 2002 survey by Netcraft shows that Web sites are more vulnerable than ever because of several recently reported security problems with Microsoft IIS and Apache Web server. Netcraft polled 38,807,788 Web servers and found that 59.67 percent (more than 23 million sites) run Apache Web server, and 28.96 percent (almost 29 percent) run IIS.
Of the IIS sites surveyed, 45 percent support .htr file mapping and might be vulnerable to attack because of a buffer overflow condition with .htr files. Microsoft reported the problem to the public on June 11.
[ Read more ]
- Article: Apache Chunk Handling Roundup (18 June 2002)
- Vulnerability: Windows 2000 and NT4 IIS .HTR Remote Buffer Overflow (13 June 2002)
- Vulnerability: Windows 2000 and NT4 IIS .ASP Remote Buffer Overflow (11 April 2002)
- Vulnerability: .htr Heap Overflow in IIS 4.0 and 5.0 (11 April 2002)