We have processes (Compaq Insight Manager, for example) that have embedded web servers in the program. They do not use IIS. I know ways to test for vulnerabilities in IIS servers, but how exactly do I do a risk assessment on an NT server with webbish abilities but some other set of .dlls? Thanks!
