Description
Microsoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while IIS is running.
Remediation
References
Related Vulnerabilities
WordPress Plugin SupportCandy Arbitrary File Upload (2.0.0)
TwistedHTTP Request Splitting Vulnerability (CVE-2020-10109)
Drupal Core 5.x Cross-Site Scripting (5.0 - 5.16)
Apache Traffic Server Integer Overflow or Wraparound Vulnerability (CVE-2018-9481)
WordPress Plugin WP Design Maps & Places Cross-Site Scripting (1.2)