Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Microsoft Security Advisory 975191 Released

01 Sep 2009   #1
SGT Oddball

Microsoft Security Advisory 975191 Released

Hi Everyone,

This is Alan Wallace, senior communications manager for our security response communications team. Today, Microsoft released Security Advisory 975191, to provide customer guidance and protection from a vulnerability that could allow remote code execution on affected systems running the FTP service in Microsoft Internet Information Services (IIS) 5.0, 5.1 and 6.0, and connected to the Internet. While we have seen detailed exploit code published on the Internet for this vulnerability, we are not currently aware of active attacks that use this exploit code or of customer impact.

This vulnerability was not responsibly disclosed to Microsoft and may put customers at risk. We continue to encourage responsible disclosure of vulnerabilities. We believe the commonly accepted practice of reporting vulnerabilities directly to a vendor serves everyone's best interests. This practice helps to ensure that customers receive comprehensive, high-quality updates for security vulnerabilities without exposure to malicious attackers while the update is being developed.

We’re currently investigating the issue as part of our Software Security Incident Response Process (SSIRP) and working to develop a security update. This update will be released once it reaches an appropriate level of quality for broad distribution.

Affected products include Windows 2000, Windows XP, and Windows Server 2003.

Microsoft recommends customers review and implement the workarounds provided in the Advisory under the Workaround section. More information on suggested actions can be found in Microsoft Knowledge Base Article 975191.

Additionally, we are actively working with partners in our Microsoft Active Protections Program (MAPP) as well as the Microsoft Security Response Alliance (MSRA) to share information that they can use to provide broader protections to customers.

For more technical details on the advisory, please see what our colleagues have written over on the Security Research and Defense blog.

As always, be sure to check back here on the MSRC blog or in the advisory for any additional information or updates that develop.

Thank you,


*This posting is provided "AS IS" with no warranties, and confers no rights*


My System SpecsSystem Spec
02 Sep 2009   #2

Windows 7 Professional 64-bit

hmm, if it was important theyd put it on Windows Update wouldnt they?
My System SpecsSystem Spec
02 Sep 2009   #3

Vista Ult64, Win7600

Quote   Quote: Originally Posted by swarfega View Post
hmm, if it was important theyd put it on Windows Update wouldnt they?
Yes they would, but only after everyone gets infected.
My System SpecsSystem Spec

 Microsoft Security Advisory 975191 Released

Thread Tools

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 01:37 AM.
Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App