Description

The showcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.

Remediation

References

CVE-1999-0736

Related Vulnerabilities

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4938)

Envoy Proxy Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling') Vulnerability (CVE-2023-35944)

Magento Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-9664)

MyBB Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-24734)

Jenkins Improper Input Validation Vulnerability (CVE-2012-6072)

Severity

Medium

Classification

CVE-1999-0736

Tags

Missing Update Known Vulnerabilities