Hi, Ehm, oops, sorry. A bit more info about the settings would be appropiate. I'm not looking at IIS specifically, it's a third-party product. It does run a server (a propriety FTP server) and this server is vulnerable to the triple-dot thing. But ONLY when running Win2k/NT. Thejian A> If i understand the question correctly, the reason would be that the A> directory traversal problem was an exploit in IIS - which only runs on NT. A> The MS webserver for 9x systems is PWS which I don't think is vulnerable in A> the same way. A> Harry M -- Best regards, Strumpf Noir Society mailto:vuln-devat_private "Mere accumulation of observational evidence is not proof." -- Death, "The Hogfather"
This archive was generated by hypermail 2b30 : Tue Feb 05 2002 - 10:19:15 PST