MS04-030: Vulnerability in WebDAV XML message handler could lead to a denial of service

Microsoft has released security bulletin MS04-030. The security bulletin contains all the relevant information about the security update, including file manifest information and deployment options. To view the complete security bulletin, visit one of the following Microsoft Web sites:

Note The WebDAV software update that is associated with Microsoft Security Bulletin MS04-030 includes a new entry to the IIS metabase named WebDAVMaxAttributesPerElement.

For additional information about how to use this new entry, click the following article number to view the article in the Microsoft Knowledge Base:

888164 A denial of service attack may occur if you send XML input to a WebDAV server and the XML has many attributes for each XML element

Eigenschappen

Artikel-id: 824151 - Laatst bijgewerkt: 15 jan. 2008 - Revisie: 1

Feedback