Test ID:	1.3.6.1.4.1.25623.1.0.10632
Category:	Windows
Title:	Webserver file request parsing
Summary:	NOSUMMARY
Description:	Description: The hotfix for the 'Webserver file request parsing' problem has not been applied. This vulnerability can allow an attacker to make the remote IIS server make execute arbitrary commands. Solution : See http://www.microsoft.com/technet/security/bulletin/ms00-086.mspx Risk factor : High
Cross-Ref:	BugTraq ID: 1912 Common Vulnerability Exposure (CVE) ID: CVE-2000-0886 http://www.securityfocus.com/bid/1912 Bugtraq: 20001107 NSFOCUS SA2000-07 : Microsoft IIS 4.0/5.0 CGI File Name Inspection Vulnerability (Google Search) http://www.securityfocus.com/templates/archive.pike?mid=143604&list=1&fromthread=0&end=2000-11-11&threads=0&start=2000-11-05& Microsoft Security Bulletin: MS00-086 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-086 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A191 XForce ISS Database: iis-invalid-filename-passing(5470) https://exchange.xforce.ibmcloud.com/vulnerabilities/5470
Copyright	This script is Copyright (C) 2001 Renaud Deraison

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.