WebDAV Vulnerability in Internet Information Services
 |
 |
 |
 |
 |
A vulnerability has been disclosed in the WebDAV extension of Microsoft Internet Information Services (IIS). As of the time of this writing, no patch has been scheduled by Microsoft. A hacker could use this vulnerability to gain access to a location that typically requires authentication.
WebDAV (Web-based Distributed Authoring and Versioning) allows users to edit and manage files collaboratively on remote Web servers through a set of extensions to the Hypertext Transfer Protocol (HTTP). The vulnerability is due to the fact that WebDAV removes Unicode characters after the security check. A hacker can use a maliciously-crafted HTTP request to gain access to resources that are normally protected.
There is a Metasploit plug-in available for this vulnerability and Check Point’s security experts have verified that code execution is possible in certain configurations.
Check Point’s VPN-1, VSX, and IPS solutions have protections that defend against attacks that use these vulnerabilities. For more information about these protections, see CPAI-2009-130.