CGI abuses : /iisadmin is world readable

Vulnerability Search		Search 219043 CVE descriptions and 99761 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 10358

Category: CGI abuses

Title: /iisadmin is world readable

Summary: NOSUMMARY

Description: Description:

The use of /iisadmin is not limited to the loopback address.
Anyone can use it to reconfigure your web server.

Solution : Restrict access to /iisadmin through the IIS ISM
Risk factor : High

Cross-Ref: BugTraq ID: 189
Common Vulnerability Exposure (CVE) ID: CVE-1999-1538
http://www.securityfocus.com/bid/189
Bugtraq: 19990114 MS IIS 4.0 Security Advisory (Google Search)
http://marc.info/?l=bugtraq&m=91638375309890&w=2
http://marc.info/?l=ntbugtraq&m=91632724913080&w=2

Copyright This script is Copyright (C) 2000 Renaud Deraison

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	10358
Category:	CGI abuses
Title:	/iisadmin is world readable
Summary:	NOSUMMARY
Description:	Description: The use of /iisadmin is not limited to the loopback address. Anyone can use it to reconfigure your web server. Solution : Restrict access to /iisadmin through the IIS ISM Risk factor : High
Cross-Ref:	BugTraq ID: 189 Common Vulnerability Exposure (CVE) ID: CVE-1999-1538 http://www.securityfocus.com/bid/189 Bugtraq: 19990114 MS IIS 4.0 Security Advisory (Google Search) http://marc.info/?l=bugtraq&m=91638375309890&w=2 http://marc.info/?l=ntbugtraq&m=91632724913080&w=2
Copyright	This script is Copyright (C) 2000 Renaud Deraison