PT-2000-1807 · Microsoft · Iis
Publicado
2000-12-19
·
Atualizado
2018-10-30
·
CVE-2000-0884
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
IIS versions 4.0 through 5.0
Description
The issue allows remote attackers to read documents outside of the web root and possibly execute arbitrary commands via malformed URLs containing UNICODE encoded characters.
Recommendations
For IIS versions 4.0 through 5.0, update to a version that is not affected by this issue to prevent remote attackers from reading documents outside of the web root and executing arbitrary commands.
Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Iis