Intrusion Prevention

MS.IIS.Remote.Password.Override

Description

This indicates an attack attempt against a denial-of-service vulnerability in Microsoft Internet Information Service.
The vulnerability is caused by the insecure method "SetPassword()" in the IIS Server Extension ActiveX control. An attacker may exploit this to cause a denial-of-service condition.

Affected Products

Microsoft Internet Information Service

Impact

Denial of Service

Recommended Actions

We are not aware of any patches supplied by the vendor as of this writing.