Description

A typographical error in the script source access permissions for Internet Information Server (IIS) 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access Vulnerability."

Remediation

References

CVE-2002-1180

Related Vulnerabilities

WordPress Plugin WP24 Domain Check Cross-Site Scripting (1.6.2)

WordPress Plugin WP Google Review Slider SQL Injection (11.7)

Oracle JRE CVE-2013-2447 Vulnerability (CVE-2013-2447)

WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Cross-Site Scripting (2.7.6)

Zenphoto Other Vulnerability (CVE-2006-2187)

Severity

High

Classification

CVE-2002-1180

Tags

Missing Update Known Vulnerabilities