Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2531

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2012-2531
Last Modified 02 Nov 2013 11:24:18
Published 13 Nov 2012 07:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2012-2531

Summary

Microsoft Internet Information Services (IIS) 7.5 uses weak permissions for the Operational log, which allows local users to discover credentials by reading this file, aka "Password Disclosure Vulnerability."

Vulnerable Systems

Application

  • Microsoft Iis 7.5


References

MS - MS12-073

BID - 56439

Related Patches

MS12-073 Security Update for IIS FTP 7.5 for Windows Vista x64 (KB2716513)


Last Updated: 27 May 2016 10:58:27