Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1180

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1180
Last Modified 10 Sep 2008 03:14:00
Published 12 Nov 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1180

Summary

A typographical error in the script source access permissions for Internet Information Server (IIS) 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access Vulnerability."

Vulnerable Systems

Application

  • Microsoft Internet Information Server 5.0


References

MS - MS02-062

XF - iis-script-source-access-bypass(10504)

BID - 6071

BID - 6068

CIAC - N-011


Last Updated: 27 May 2016 10:37:14