Description
The Winmsdp.exe sample file in IIS 4.0 and Site Server 3.0 allows remote attackers to read arbitrary files.
Remediation
References
Related Vulnerabilities
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2335)
Drupal Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2020-36193)
Oracle Database Server CVE-2009-1991 Vulnerability (CVE-2009-1991)
WordPress Plugin Spider Calendar Cross-Site Scripting (1.1.0)