Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2531


Vulnerability Score 2.1 2.1
CVE Id CVE-2012-2531
Last Modified 02 Nov 2013 11:24:18
Published 13 Nov 2012 07:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



Microsoft Internet Information Services (IIS) 7.5 uses weak permissions for the Operational log, which allows local users to discover credentials by reading this file, aka "Password Disclosure Vulnerability."

Vulnerable Systems


  • Microsoft Iis 7.5


MS - MS12-073

BID - 56439

Related Patches

MS12-073 Security Update for IIS FTP 7.5 for Windows Vista x64 (KB2716513)

Last Updated: 27 May 2016 10:58:27