Guest Connected: 55635   Bookmark Us     Contact Us  
Total Shareware
Currently Listed: 244,916 Applications


  Utilities - Patches and Updates

Link To Program

  Windows 2000 ''Malformed Hit-Highlighting Argument'' Vulnerability Patch  -  Version  1

"This patch eliminates two vulnerabilities whose only relationship is that both occur in Index Server. The first is the “Malformed Hit-Highlighting Argument” vulnerability. The ISAPI filter that implements the hit-highlighting (also known as “WebHits”) functionality does not adequately constrain what files can be requested. By providing a deliberately-malformed argument in a request to hit-highlight a document, it is possible to escape the virtual directory. This would allow any file residing on the server itself, and on the same logical drive as the web root directory, to be retrieved regardless of permissions.

To link to this program use the html below (use text editor and check the exact syntax):

<a href="http://www.TotalShareware.com/LinkToItem.aspx?id=17355">View this program at www.TotalShareware.com</a>

This link will appear like:

View this program at www.TotalShareware.com