A vulnerability was recently reported in Microsoft IIS. Microsoft has since completed its investigation and “found that there is no vulnerability in IIS.” However, “there is an inconsistency in IIS 6 only in how it handles semicolons in URLs. It’s this inconsistency that the claims have focused on, saying this enables an attacker to bypass [...]