Microsoft SQL Injection FTL…
A recent attack has compromised somewhere in the neighborhood of 500,000 pages with a SQL injection attack. The vulnerability seems to be limited to Microsoft’s IIS and is easily defeated by the end user with Firefox and the “NoScript” tag.
The automated attack takes advantage to the fact that Microsoft’s IIS servers allow generic commands that [...]