Vulnerability in N/a
CVE-1999-1538
When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does not restrict access to the local machine and allows an unauthorized user to gain access to sensitive server information, including the Adm…
EPSS: 0.503 (97.9th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 19990114 MS IIS 4.0 Security Advisory (mailing-list, x_refsource_BUGTRAQ)
- 19990114 MS IIS 4.0 Security Advisory (mailing-list, x_refsource_NTBUGTRAQ)
- 189 (vdb-entry, x_refsource_BID)