Description
IIS 5.0 uses relative paths to find system files that will run in-process, which allows local users to gain privileges via a Trojan horse file, aka the "System file listing privilege elevation" vulnerability.
Remediation
References
Related Vulnerabilities
WordPress Plugin Custom Login Redirect Cross-Site Request Forgery (1.0.0)
WordPress Other Vulnerability (CVE-2007-3544)
Artifactory CVE-2024-3505 Vulnerability (CVE-2024-3505)
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-2202)
Jenkins Insufficient Session Expiration Vulnerability (CVE-2019-1003049)