Vulnerability in N/a

CVE-2002-1744

Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote attackers to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation…

EPSS: 0.673 (98.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

References

iis-codebrws-view-source(8853) (vdb-entry, x_refsource_XF)
20020417 Microsoft IIS 5.0 CodeBrws.asp Source Disclosure (mailing-list, x_refsource_BUGTRAQ)
20020417 Re: Microsoft IIS 5.0 CodeBrws.asp Source Disclosure (mailing-list, x_refsource_BUGTRAQ)
4525 (vdb-entry, x_refsource_BID)