News

Flaw Turns IIS Into Spam Tool

By Justin Jenkins | Published July 8, 2001, 6:56 PM

Intending to streamline server functions and ease the task of system administration, Microsoft enabled by default the installation of an SMTP sever on all versions of its Internet Information Server, or IIS Web sever package. SMTP, or Simple Mail Transfer Protocol, controls all e-mail sent to and from a server. Microsoft has issued a security bulletin addressing a vulnerability in this SMTP sever which allows an attacker to perform unauthorized relaying, which is responsible for much of the spam that unfortunate Web users receive everyday. The software giant has released a patch that fixes the flaw, and recommends that users disable or even remove SMTP if they do not use it.

The patch applies for both Windows 2000 Professional and Server products, but does not affect Exchange Server 5.5 or 2000 - which uses a distinct code impervious to this specific flaw. For more information and to download the update, visit Microsoft TechNet Security.

Comments

View comments by with a score of at least

Brian Davidson
Jul 11, 2001 - 2:29 PM

"Microsoft security flaw enabled by default"

Is that news?

Score: 0

|
Post Reply
peytonrm
Jul 9, 2001 - 7:09 PM

THAT WAS NOT CALLED FOR!
Seriously though, we have all seen many complain to betanews about these non-beta stories, we have all also seen them fall on deaf ears. So what is the need for this type of post any more?

Score: 0

|
Post Reply

Microsoft's Ray Ozzie: 'Nobody's going to be 100% open'

The mobile apps ecosystems of the world may converge over time, led by apps being ported over across platforms, according to the Chief Software Architect.

Nearly half the money spent at US retail on desktop PCs goes to Apple

Shocking, isn't it?

Will Firefox beat IE9 to Direct2D rendering?

Just days after Microsoft executives gave conference attendees a peek at a new rendering technology, a Mozilla contributor revealed he's working on the same thing.

Where there's smoke: Apple warranty stance raises troubling questions

Carmi Levy | Wide Angle Zoom: Smoking can be dangerous not only for your lungs, it appears, but for your Apple hardware warranty.

Apple invokes DMCA, claims Psystar is 'trafficking in circumvention devices'

In trying to close the book on possibly the last attempt at a Mac clone, Apple cites from its own landmark case...but may actually be misinterpreting it.

The fallacy of Facebook privacy

Carmi Levy | Wide Angle Zoom: If an insurance company learns something interesting about its client through the Internet, is that snooping?

Microsoft 'worked with Apple' for Silverlight on iPhone, says Goldfarb

By not making such a big deal out of trying to stream video to the iPhone, Microsoft got a big deal out of it, revealed the Silverlight product manager.

Clicker.com cuts through the Web video chaos

In a world where homemade video and Hollywood movies travel the same pipeline, it's good to have a real search engine to cut through the clutter.

A case study in improving software: What Office 2010 can learn from Notion 3

A music composition product gambles with a complete overhaul, in an effort to make headway against two well-known competitors in a tough market.

Kindle 2 update adds battery life, native PDF reader

Amazon has pushed out an update to the Kindle 2 e-reader that lengthens battery life and adds a native PDF viewer.

Safari on iPhone gets competition from a $1 browser app

Apple likes to say it gives iPhone users a full browsing experience, but a new competitor tries to incorporate more desktop browser features.