Test Kennung:	1.3.6.1.4.1.25623.1.0.10956
Kategorie:	Web Servers
Titel:	Microsoft IIS 'Codebrws.asp' Source Disclosure Vulnerability - Active Check
Zusammenfassung:	Microsoft's IIS 5.0 web server is shipped with a set of; sample files to demonstrate different features of the ASP language. One of these sample; files allows a remote user to view the source of any file in the web root with the extension; .asp, .inc, .htm, or .html.
Beschreibung:	Summary: Microsoft's IIS 5.0 web server is shipped with a set of sample files to demonstrate different features of the ASP language. One of these sample files allows a remote user to view the source of any file in the web root with the extension .asp, .inc, .htm, or .html. Solution: Remove the /IISSamples virtual directory using the Internet Services Manager. If for some reason this is not possible, removing the following ASP script will fix the problem: This path assumes that you installed IIS in c:\inetpub c:\inetpub\iissamples\sdk\asp\docs\CodeBrws.asp CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-1999-0739 Microsoft Security Bulletin: MS99-013 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-013 Microsoft Knowledge Base article: Q231368 Microsoft Knowledge Base article: Q232449
Copyright	Copyright (C) 2002 Matt Moore / HD Moore

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.