Questions about Web Server Attacks


Hi there this is Bill Sisk.


There have been conflicting public reports describing a recent rash of web server attacks. I want to bring some clarification about the reports and point you to the IIS blog for additional information.


To begin with, our investigation has shown that there are no new or unknown vulnerabilities being exploited. This wave is not a result of a vulnerability in Internet Information Services or Microsoft SQL Server. We have also determined that these attacks are in no way related to Microsoft Security Advisory (951306). 


The attacks are facilitated by SQL injection exploits and are not issues related to IIS 6.0, ASP, ASP.Net or Microsoft SQL technologies. SQL injection attacks enable malicious users to execute commands in an application’s database.  To protect against SQL injection attacks the developer of the Web site or application must use industry best practices outlined hereOur counterparts over on the IIS blog have written a post with a wealth of information for web developers and IT Professionals can take to minimize their exposure to these types of attacks by minimizing the attack surface area in their code and server configurations. Additional information can be found here: http://blogs.iis.net/bills/archive/2008/04/25/sql-injection-attacks-on-iis-web-servers.aspx


I hope this helps to answer any questions



Bill


*This posting is provided “AS IS” with no warranties, and confers no rights.*


Comments (17)

  1. Anonymous says:

    I got a ping today asking if SBS 2003 was vulnerable to this Security Advisory… Microsoft Security

  2. Anonymous says:

    I got a ping today asking if SBS 2003 was vulnerable to this Security Advisory… Microsoft Security

  3. Anonymous says:

    The recent slate of attacks on IIS servers don't seem to be an attack directly against IIS or against

  4. Anonymous says:

    Microsoft is denying that a recent rash of Web server attacks are the company's fault. In a blog

  5. Anonymous says:

    Over the last week there have been a number of reports of automated SQL injection attacks on Web sites running Microsoft’s flagship IIS Web server. The Washington Post’s Brian Krebs summarizes them nicely in Hundreds of Thousands of Micros..

  6. Anonymous says:

    La blogosfera "sicura" (nome scherzoso con cui identifico l’insieme di blog/e-magazines in

  7. Anonymous says:

    If your business’s Website has been hacked in recent weeks via SQL injection attacks, don’t blame Microsoft. Heck no. Not even if it’s their fault. A Microsoft manager said the following in response to questions: "Our investigation

  8. Anonymous says:

    A new major security attack occurred over the weekend, where over one half million web pages became infected

  9. Anonymous says:

    A new major security attack occurred over the weekend, where over one half million web pages became infected

  10. Anonymous says:

    Microsoft late Friday denied that vulnerabilities in its Web and SQL Server software had been exploited

  11. Anonymous says:

    There has been a lot of discussions in different blogs on the attacks on IIS servers. Microsoft Security

  12. Anonymous says:

    Az utóbbi időben egyre több olyan hír jelent meg a világhálón, amelyek szerint durva hiba lehet a Windows

  13. Anonymous says:

    Microsoft Corp. late Friday

    denied that vulnerabilities in its Web and SQL Server software had been

    exploited to hack hundreds of thousands of Internet pages. Attacks on legitimate Web domains, including some belonging to the <a title="United Nations"

  14. Anonymous says:

    Drawing the Line Massive Attack: Half A Million Microsoft-Powered Sites Hit With SQL Injection Questions about Web Server Attacks Microsoft denies fault in hacksThe resulting botnet’s mail was the only thing that was making it through my rDNS filters..

  15. Anonymous says:

    There s a lot of noise arround currently ongoig SQL injection attacks and even if that is quite an "old"

  16. Anonymous says:

    Well, there was quite some chatter over the last few weeks with regards to the massive defacements we

  17. Anonymous says:

    本文翻译自微软博客上刊载的相关文章,英文原文版权归原作者所有,特此声明。(特别感谢NeilCarpenter对本文写作提供的帮助)

    近期趋势

    从去年下半年开始,很多网站被损害,他们在用于生成动…