Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
MichaelGG
on April 15, 2015
|
parent
|
context
|
favorite
| on:
Remote Kernel Code Execution Via HTTP Request In I...
It's not IIS. It's HTTP.SYS. New configs have Powershel remote or WinRM. They use http.Sys and are vulnerable.
MichaelGG
on April 15, 2015
[–]
Seems I'm wrong. Kernel cache has to be enabled explicitly and Powershell/WinRM don't do that. Whew.
stephengillie
on April 16, 2015
|
parent
[–]
We all dodged a bullet there.
MichaelGG
on April 16, 2015
|
root
|
parent
[–]
They really should have made it clear that it's a mitigating factors and that most (some, many?) non-IIS uses wouldn't use kernel caching and thus be OK.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
