News

Flaw Turns IIS Into Spam Tool

By Justin Jenkins | Published July 8, 2001, 6:56 PM

Intending to streamline server functions and ease the task of system administration, Microsoft enabled by default the installation of an SMTP sever on all versions of its Internet Information Server, or IIS Web sever package. SMTP, or Simple Mail Transfer Protocol, controls all e-mail sent to and from a server. Microsoft has issued a security bulletin addressing a vulnerability in this SMTP sever which allows an attacker to perform unauthorized relaying, which is responsible for much of the spam that unfortunate Web users receive everyday. The software giant has released a patch that fixes the flaw, and recommends that users disable or even remove SMTP if they do not use it.

The patch applies for both Windows 2000 Professional and Server products, but does not affect Exchange Server 5.5 or 2000 - which uses a distinct code impervious to this specific flaw. For more information and to download the update, visit Microsoft TechNet Security.

Comments

View comments by with a score of at least

Brian Davidson
Jul 11, 2001 - 2:29 PM

"Microsoft security flaw enabled by default"

Is that news?

Score: 0

|
Post Reply
peytonrm
Jul 9, 2001 - 7:09 PM

THAT WAS NOT CALLED FOR!
Seriously though, we have all seen many complain to betanews about these non-beta stories, we have all also seen them fall on deaf ears. So what is the need for this type of post any more?

Score: 0

|
Post Reply

Palm posts third quarter results: disappointing sales, more net loss

Palm may be doing better this year than it did last year, but with only 42% sellthrough for the quarter, there's plenty of room for improvement.

Kindle for Mac released: Is Amazon's e-reader moving away from hardware?

Today, Amazon announced Kindle for Mac, the latest addition to the family of free Kindle software.

Microsoft cuts and pastes an egg

Carmi Levy | Wide Angle Zoom: We've listened to our mobile customers, said Microsoft, and cut-and-paste isn't what they want? Uh-huh. Right.

Google improves Maps for Android, rolls in bonus features

The search provider has improved page listings in Maps 4.1, adding a Latitude widget and live wallpaper.

Will Viacom's public airing of YouTube's dirty laundry change the Web forever?

If Viacom wins its summary judgment, will video services everywhere have to police their content for anything that may belong to a copyright holder?

Let the rejections begin: Apple opens first round of submissions for iPad App Store

In a message sent to developers today, Apple announced that it is now accepting iPad apps for the iTunes app store.

Viacom and YouTube: Timeline of pertinent events

The billion-dollar legal battle between Viacom and YouTube is in its third year, but the video site's run-ins with Viacom stretch back more than five years.

A tale of two "red alerts:" Which Windows warnings should you heed?

A pair of malware warnings are circulating worldwide, but after reading so many, they all seem alike. Sophos tells us to read them all more carefully.

Nvidia admits GeForce drivers responsible for fan problems, issues updates

It's the type of driver error you see less and less frequently, but after a few video cards were smoked, Nvidia has issued what it hopes will be a fix.

Netflix axes 'friends' feature due to unpopularity

After mysteriously disappearing from the Movie Detail page on Netflix, the Friends feature is in the process of being removed.

Preliminary results: IE9 tech preview performs 7.8 times better than IE8

There are indeed significant improvements made to the efficiency and processing power of Microsoft's next browser, though they're not across the board.