CVE-1999-0407

Sažetak

By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.

Reference

http://marc.info/?l=bugtraq&m=91983486431506&w=2
http://marc.info/?l=bugtraq&m=92000623021036&w=2

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

18-10-2016 - 01:59

Objavljeno

09-02-1999 - 05:00