先看看这个:
http://news.softpedia.com/news/Microsoft-Confirms-0-Day-IIS-Security-Vulnerability-130650.shtml
Microsoft Confirms 0-Day IIS Security Vulnerability IIS 6.0 Security Best Practices can help mitigate the threat.So far, the issue in question affects version 6 of IIS on a fully patched Windows Server 2003 R2 SP2; however, additional IIS releases might also be impacted.
再看看这个:
Microsoft rebuts IIS vulnerability claims
http://news.cnet.com/8301-1009_3-10422871-83.html
Microsoft has denied claims of a new vulnerability in Internet Information Services (IIS) 6, putting the blame instead on poorly configured Web servers.
真他奶奶的丫丫,就这两文章,把我们公司的同事给忽悠的一愣一愣的,谁让这鸟文章是E文写的呢!
