PT-2007-4125 · Microsoft · Windows Nt+1

Published

2007-05-22

Updated

2018-10-16

CVE-2007-2815

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Internet Information Services (IIS) Web Server version 5.0

Description The issue concerns the "hit-highlighting" functionality in webhits.dll, which only uses Windows NT ACL configuration. This allows remote attackers to bypass NTLM and basic authentication mechanisms, accessing private web directories via the CiWebhitsfile parameter to null.htw.

Recommendations For Microsoft Internet Information Services (IIS) Web Server version 5.0, consider restricting access to the CiWebhitsfile parameter in the null.htw file to minimize the risk of exploitation. Additionally, review and adjust the Windows NT ACL configuration to ensure proper access controls are in place.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2007-2815

Affected Products

Internet Information Services (Iis) Web Server

Windows Nt

PT-2007-4125 · Microsoft · Windows Nt+1

CVE-2007-2815

Weakness Enumeration

Related Identifiers

Affected Products

References · 8