Описание
The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:data_access_components:1.5:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:data_access_components:2.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:data_access_components:2.1:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:index_server:2.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:site_server:3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.79296
Высокий
10 Critical
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands.
EPSS
Процентиль: 99%
0.79296
Высокий
10 Critical
CVSS2
Дефекты
CWE-264