iis vulnerability
If IIS has a vulnerability and a administrator shuts down port 80 so IIS cannot listen on it. Will that same vulnerability be present on port 443(https)? Thank you for taking the time to look consider this.
It depends on the exact vulnerability, but in general yes. If the vulnerability is with an application on the IIS server, then it is extremely likely to be still vulnerable.
Check more discussion of this question.
Related posts:
- Sencha Ext JS 4 framework examples on IIS 7 configured NOT on port 80 doesn’t work
- How to expose just part of a Website to the WWW in IIS 7?
- Enabling Details HTTP Errors for a certain network in IIS 7
- MS Analysis Services + IIS – configuration/connection issue
- IIS Virtual directory/application name in upper case
Leave a comment
Recent Posts
- Cron expression that runs every 5 minutes from 1:30 am – 6:00 am [duplicate]
- Understanding redundant power supplies
- Is there a way for administrators to disable users from installing Firefox extensions?
- Is there research material on NTP accuracy available?
- How to create a limited “domain admin” that does not have access to domain controllers?
Tags
active-directory
amazon-ec2
apache
apache2
backup
bash
centos
cisco
command-line
debian
dns
email
exchange
firewall
iis
iis7
iptables
linux
macosx
monitoring
mysql
networking
nginx
performance
permissions
php
postfix
raid
security
sql-server
sql-server-2005
sql-server-2008
ssh
ssl
ubuntu
unix
virtualization
vpn
webserver
windows
windows-7
windows-server-2003
windows-server-2008
windows-server-2008-r2
windows-xp