FILE *fd; int DoesTemplateExist(char *pathtohtwfile)
{ // Just in case inetinfo.exe passes too long a string // let's make sure it's of a suitable length and not // going to open a buffer overrun vulnerability char *file; file = (char *)malloc(250); strncpy(file,pathtohtwfile,250); fd = fopen(file,"r"); // Success if(fd !=NULL) { return 1; } // failed else { return 0; } }
解决方案: 不使用index server功能的用户,可以在IIS管理控制台中,点 web站点,属性,选择主目录,配置(起始点),应用程序映射, 将htw与webhits.dll的映射删除。 如果要用到webhits.dll,则使用下面的补丁: Index Server 2.0(Intel机器)的补丁 Index Server 2.0(Alpha机器)的补丁 Windows2000的Index Server服务补丁