Preface: IIS Double-Byte Code attemptLogo -Internet Security Systems

IIS Double-Byte Code attempt
advICE :Intrusions : 2000612
 FAQ
Oh my gosh, I'm being HACKED!!!
How do I report the hacker to my ISP?
I'm seeing lots of attacks, is this normal?
Summary

Intrusion attempt.

Details

A specially constructed URL which may allow undesirable access has been seen. An attempt has been made to access a URL with a trailing %81 thru %fe. Some servers will return the original file, rather than executing it, thus revealing to the potential attacker critical information about the server.

Server source code often contains hidden passwords, hidden filenames, or easy-to-find bugs. The hacker can then use this hidden information to break into the server.

 more information
q233335   Microsoft Knowledgebase
Page Contents Visible When Certain Characters are at End of URL  
Microsoft Security Bulletin (MS99-022)  
 
Microsoft Security Bulletin (MS99-022): FAQ  
 
BugtraqID: 477   NT IIS Double Byte Code Page Vulnerability
 
CVE-1999-0725   Double Byte Code Page vulnerability
 
MS Bulletin: MS99-022  
 

 parametric information
URLThe suspicious URL.
accessedIndicates whether the URL was successfully accessed.
codeThe HTTP return code.
argThe argument to the GET command (if any).

 
Version appeared: 1.8.5.5
Privacy Policy |  Copyright Info