IIS 7.5 website application pool with full administrator permissions hackable?
Posted
by
Caroline Beltran
on Server Fault
See other posts from Server Fault
or by Caroline Beltran
Published on 2014-06-10T02:35:58Z
Indexed on
2014/06/10
3:27 UTC
Read the original article
Hit count: 383
Although I would never do this, I would like to know how a static html website with the permission mentioned in the title could be compromised.
In my humble opinion, I would guess that this would pose no threat since a web visitor has no way to upload/edit/delete anything.
What if the site was a simple PHP website that simply displayed ‘hello world’? What if this PHP site had a contact us form that was properly sanitized?
Thank you
© Server Fault or respective owner