Описание
Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine.
Уязвимые конфигурации
Конфигурация 1Версия до 5.0 (включая)
Одно из
cpe:2.3:a:microsoft:internet_information_server:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_server:4.0:alpha:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_services:1.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_services:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00185
Низкий
4.4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine.
EPSS
Процентиль: 40%
0.00185
Низкий
4.4 Medium
CVSS2
Дефекты
NVD-CWE-Other