Microsoft rebuts IIS vulnerability claims (CNET)

Redmond follows up on a security researcher’s claims of a URL loophole that could let an attacker upload and execute code on an Web server.

Original post