CVE-2002-1717

Name of the Vulnerable Software and Affected Versions Microsoft Internet Information Server (IIS) version 5.1

Description The issue allows remote attackers to view path information via a GET request to specific API endpoints, including "/ vti pvt/access.cnf", "/ vti pvt/botinfs.cnf", "/ vti pvt/bots.cnf", or "/ vti pvt/linkinfo.cnf".

Recommendations For Microsoft Internet Information Server (IIS) version 5.1, consider restricting access to the vulnerable API endpoints "/ vti pvt/access.cnf", "/ vti pvt/botinfs.cnf", "/ vti pvt/bots.cnf", and "/ vti pvt/linkinfo.cnf" to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.