If IIS has a vulnerability and a administrator shuts down port 80 so IIS cannot listen on it. Will that same vulnerability be present on port 443(https)? Thank you for taking the time to look consider this.
It depends on the exact vulnerability, but in general yes. If the vulnerability is with an application on the IIS server, then it is extremely likely to be still vulnerable.
- Sencha Ext JS 4 framework examples on IIS 7 configured NOT on port 80 doesn’t work
- How to expose just part of a Website to the WWW in IIS 7?
- Enabling Details HTTP Errors for a certain network in IIS 7
- MS Analysis Services + IIS – configuration/connection issue
- IIS Virtual directory/application name in upper case
Leave a comment
- Cron expression that runs every 5 minutes from 1:30 am – 6:00 am [duplicate]
- Understanding redundant power supplies
- Is there a way for administrators to disable users from installing Firefox extensions?
- Is there research material on NTP accuracy available?
- How to create a limited “domain admin” that does not have access to domain controllers?