[Dshield] IIS Logs

Doug White doug at clickdoug.com
Tue Feb 3 03:18:41 GMT 2004


Microsoft issued a security patch to update MSDAC vulnerabilities in January.

======================================
Stop spam on your domain, Anti-spam solutions
http://www.clickdoug.com/mailfilter.cfm
For hosting solutions http://www.clickdoug.com
======================================
Aspire to Inspire before you Retire or Expire!


----- Original Message ----- 
From: "Richard Golodner" <RGolodner at aetea.com>
To: "'General DShield Discussion List'" <list at dshield.org>
Sent: Monday, February 02, 2004 8:56 PM
Subject: RE: [Dshield] IIS Logs


: This looks like a piece of an old IIS trick messing with the dll that allows
: active x to interact with odbc. Look to see if you have these files
: installed. I think also that if you removed those files you would no longer
: be vulnerable, but you lost the active x odbc feature.
:                                    Richard
:
: -----Original Message-----
: From: walter woodrow [mailto:oopicwow at yahoo.com]
: Sent: Monday, February 02, 2004 9:45 PM
: To: list at dshield.org
: Subject: [Dshield] IIS Logs
:
:
: Can anyone help explain these log entries I found in my IIS logs?
:
: 81.210.28.52  -  2/2/2004 3:12:38 AM 700 719 200 OK POST  /msadc/msadcs.dll
: hr=80020009,CSoapStub::HttpExtensionProc,
: 81.210.28.52  -  2/2/2004 3:12:34 AM 32 186 200 OK GET  /msadc/msadcs.dll
: hr=80070057,CSoapStub::HttpExtensionProc,
:
: Thanks.
:
:
: ---------------------------------
: Do you Yahoo!?
: Yahoo! SiteBuilder - Free web site building tool. Try it!
: _______________________________________________
: list mailing list
: list at dshield.org
: To change your subscription options (or unsubscribe), see:
: http://www.dshield.org/mailman/listinfo/list
:
: _______________________________________________
: list mailing list
: list at dshield.org
: To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list
:
:




More information about the list mailing list