Microsoft KB Archive/238606

= Page Contents Visible When Certain Dot Extensions Present in the Virtual Directory Name =

Article ID: 238606

Article Last Modified on 9/4/2007

-

APPLIES TO


 * Microsoft Windows NT Server 4.0, Terminal Server Edition
 * Microsoft Windows NT Server 4.0 Standard Edition
 * Microsoft Internet Information Server 4.0
 * Microsoft Site Server 3.0 Standard Edition
 * Microsoft Site Server 3.0 Commerce Edition

-



This article was previously published under Q238606



SYMPTOMS
If either .com, .exe now, .dll, .cgi or .sh are at the end of a physical directory name that is present in a virtual directory, the contents of the page pointed to by the URL are returned to the browser. If the URL points to an Active Server Page (ASP) page, the contents of the ASP script file are returned to the browser instead of the processed results of the ASP page.



Microsoft Internet Information Server
The following files are available for download from the Microsoft Download Center:

US English:

x86: Download Vrdcon4i.exe now

Simplified Chinese:

x86: Download Vrdcon4i.exe now

Traditional Chinese:

x86: Download Vrdcon4i.exe now

German:

x86: Download Vrdcon4i.exe now

Japanese:

x86: Download Vrdcon4i.exe now

Korean:

x86: Download Vrdcon4i.exe now

For additional information about how to download Microsoft Support files, click the following article number to view the article in the Microsoft Knowledge Base:

119591 How to Obtain Microsoft Support Files from Online Services

Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help to prevent any unauthorized changes to the file. The English-language version of this fix should have the following file attributes or later:   Date      Time                   Size    File name     Platform ---  10/15/99  04:00p               329,024 Asp.dll         x86 10/15/99 03:58p               184,736 Infocomm.dll    x86 10/15/99 03:59p                11,248 Iwrps.dll       x86 10/15/99 03:59p                38,256 Ssinc.dll       x86 10/15/99 03:59p               228,464 W3svc.dll       x86 10/15/99 03:59p                87,504 Wam.dll         x86

10/15/99 04:00p               549,648 Asp.dll         Alpha 10/15/99 03:58p               303,888 Infocomm.dll    Alpha 10/15/99 03:59p                16,656 Iwrps.dll       Alpha 10/15/99 03:59p                60,176 Ssinc.dll       Alpha 10/15/99 03:59p               383,760 W3svc.dll       Alpha 10/15/99 03:58p               149,264 Wam.dll         Alpha NOTE: Due to file dependencies, this hotfix requires Microsoft Windows NT 4.0 Service Pack 4, Service Pack 5, or Service Pack 6a.

Windows NT Server or Workstation 4.0
To resolve this problem, obtain the latest service pack for Windows NT 4.0 or the individual software update. For information on obtaining the latest service pack, please go to:


 * http://www.microsoft.com/windows/servicepacks/ -or-


 * 152734how to obtain the latest windows nt 4.0 service pack

For information on obtaining the individual software update, contact Microsoft Product Support Services. For a complete list of Microsoft Product Support Services phone numbers and information on support costs, please go to the following address on the World Wide Web:

http://support.microsoft.com/directory/overview.asp

Windows NT Server 4.0, Terminal Server Edition
To resolve this problem, obtain the latest service pack for Windows NT Server 4.0, Terminal Server Edition. For additional information, click the following article number to view the article in the Microsoft Knowledge Base:

152734 How to Obtain the Latest Windows NT 4.0 Service Pack



STATUS
Microsoft has confirmed that this is a problem in Internet Information Server 4.0.

Microsoft has confirmed that this is a problem in Windows NT 4.0 and Windows NT Server 4.0, Terminal Server Edition.

This problem was first corrected in Windows NT Server 4.0 Service Pack 6 and Windows NT Server 4.0, Terminal Server Edition Service Pack 6.



MORE INFORMATION
For related information about this problem, please visit the following Microsoft Web site:

http://www.microsoft.com/technet/security/bulletin/MS99-058.mspx

For additional security-related information about Microsoft products, please visit the following Microsoft Web site:

http://www.microsoft.com/security/

Additional query words: iisscript asp iiswww iisvirtual kbDotCom

Keywords: kbhotfixserver kbqfe kbbug kbfix kbgraphxlinkcritical kbqfe KB238606

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.