" The error that you see is returned because there is nothing after the
'='
sign."

http://server.com/null.ida?=ThereISsomthingHere

Well, there is definitely something after the "=" sign there, and it
still gives the same error; "File . Error 0x80040e14 caught while
processing query" So either they have not done their research or they
are trying to cover up something more serious. Has anyone tried
attaching a debugger to IIS (inetinfo.exe I believe)?

With kinds regards,

Rense

-----Original Message-----
From: RWXLabs [mailto:rwxlabsrwxsecurity.com]
Sent: maandag 25 maart 2002 4:23
To: vuln-dev
Subject: about idq.dll problem!!!

Hi,

After several emails changed with the Microsoft on the problem presented

for idq.dll, follows below the last envoy for the Microsoft Security
Response Center.

------------------------------------------------------------------------
--------
Hi,

thanks for the additional information. This is very helpful.

I've conferred with our teams and we can explain what you're seeing.

The error that you see is returned because there is nothing after the =
sign. To be clear, there is no corruption of any sort. Both IIS and
Indexing Service recover correctly.

We realize that it's a bit confusing and we are looking into using a
standard 404 error for this type of issue in the future.

Thank you very much for bringing this to us, we really appreciate it.

Regards,
securemicrosoft.com
------------------------------------------------------------------------
--------

Thanks,

Marcos Ferreira
marcosrwxsecurity.com
RWXSecurity - Information Security
http://www.rwxsecurity.com

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]