Описание
Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for parsed pages via a malformed URL that uses the lead-byte of a double-byte character.
Ссылки
- Broken Link
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Broken Link
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:*:far_east:*:*:*
cpe:2.3:a:microsoft:internet_information_server:5.0:*:*:*:far_east:*:*:*
EPSS
Процентиль: 94%
0.12517
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
больше 3 лет назад
Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for parsed pages via a malformed URL that uses the lead-byte of a double-byte character.
EPSS
Процентиль: 94%
0.12517
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other