=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2007/VULN285
_____________________________________________________________________

DATE                      : 11/07/2007

HARDWARE PLATFORM(S)      : /
                                               	
OPERATING SYSTEM(S)       : Windows XP Proefessional SP2
======================================================================
Affected Products:

   - Windows XP Professional Service Pack 2


Non-Affected Products:

   - Windows 2000 Service Pack 4
   - Windows XP Home Service Pack 2
   - Windows XP Professional x64 Edition
   - Windows XP Professional x64 Edition Service Pack 2
   - Windows Server 2003 Service Pack 1
   - Windows Server 2003 Service Pack 2
   - Windows Server 2003 x64 Edition
   - Windows Server 2003 x64 Edition Service Pack 2
   - Windows Server 2003 with SP1 for Itanium-based Systems
   - Windows Server 2003 with SP2 for Itanium-based Systems
   - Windows Vista
   - Windows Vista x64 Edition


Vulnerability Details:

There is a remote code execution vulnerability in Internet Information
Services (IIS) 5.1 on Windows XP Professional Service Pack 2 that could
allow an attacker who successfully exploited this vulnerability to take
complete control of the affected system. An attacker could exploit the
vulnerability by sending specially crafted URL requests to a Web page
hosted by Internet Information Services.


Workaround Details:

1. Use URLScan 2.5
   The installation of URLScan helps protect the affected system
from  		   attempts to exploit this vulnerability.

   - Install URLScan, using the default URLScan.ini settings.
   - Restart the IISAdmin and WWW Publishing services for the changes to
                                                   	take effect.

2. To help protect from network-based attempts to exploit this
vulnerability, block access to port 80 (TCP) using:

   - Windows Firewall.

3. Uninstall IIS on systems that do not require it.
======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================