Microsoft Issues Two Security Patches
4 Comments
Microsoft has issued two new security bulletins for NT 4.0 and IIS. The first patch that eliminates a security vulnerability in Microsoft Internet Information Server 4.0 and 5.0 that could allow a malicious user to slow a web server's response or prevent it from providing service all together by sending a specially-malformed URL with an extremely large number of escaped characters. The second patch corrects the ability of a malicious user to compromise the cryptographic keys of other users who subsequently log onto the same NT 4.0 machine. For more information and to download these latest patches, visit Microsoft TechNet Security.