I have some website URL like below https://somesite:443/_vti_bot/ when we run HP Assessment Management Platform (HP AMP) It shown the details like below Summary: A vulnerability that would allow an attacker to bypass authentication has been discovered in Microsoft Internet Information Services (IIS) versions 5,5.1 and 6. Using WebDAV requests or a specially crafted HTTP GET request, an attacker could utilize this vulnerability to access restricted information, or in some cases to gain administrative privileges on affected computers, thereby facilitating complete system compromise. Recommendations include following the Microsoft remediation steps. Implication: An attacker could leverage these issues to access restricted information or to gain administrative privileges on affected computers, facilitating complete system compromise. Fix: Visit the Microsoft Security Advisory and follow their remediation steps. ( http://microsoft.com/technet/security/advisory/971492.aspx) Reference: Vendor: Vulnerability in IIS Could Allow Elevation of Privilege Advisory: IIS WebDAV Request Directory Security Bypass CVE: CVE-2009-1535 Attack Request: PROPFIND /_vti_bot%c0%af/ HTTP/1.1 Referer: https://somesite:443/ ................................................... ................................................... Attack Response: HTTP/1.1 207 Multi-Status Date: Mon, 10 Sep 2012 14:01:35 GMT...TRUNCATED... Now we went to below URL: http://technet.microsoft.com/en-us/security/bulletin/MS09-020 and we found that we need to install patch "KB970483". Here the problem is that patch is already installed to my web server because automatic updates is turned on for the machine. pleas help how to fix this issue? Other details: Operating System: Windows Server 2003 R2 Standard Edition Service Pack 2 IIS version: 6.0

Hi, Thanks for posting in Microsoft TechNet forums. For IIS related issue, I suggest we seek help in our IIS forum. There you can get more effective suggestion by other experts who familiar with this topic. Your understanding is appreciated. Internet Information Server (IIS) http://social.technet.microsoft.com/Forums/en-US/iises/threads http://forums.iis.net/ Have a nice day. Regards Kevin

Hi, Thanks for posting in Microsoft TechNet forums. For IIS related issue, I suggest we seek help in our IIS forum. There you can get more effective suggestion by other experts who familiar with this topic. Your understanding is appreciated. Internet Information Server (IIS) http://social.technet.microsoft.com/Forums/en-US/iises/threads http://forums.iis.net/ Have a nice day. Regards Kevin