IIS 6.0的WEB管理接口存在多个问题
Microsoft IIS 6.0的WEB管理接口存在多个问题,远程攻击者可以利用这个漏洞进行跨站脚...来源:CNCERT 2003-08-01
CNCVE编号:CNCVE-20031438
CVE编号:
安全级别:高
漏洞中文描述:
Microsoft IIS 6.0的WEB管理接口存在多个问题,远程攻击者可以利用这个漏洞进行跨站脚本攻击,获得合法会话ID或未授权访问部分资源。
漏洞英文描述:
Multiple vulnerabilities have been reported in the web admin interface that is included in Microsoft IIS 6.0. This includes multiple instances of cross-site scripting vulnerabilities. Additionally, it is reported that the web admin interface could expose valid session IDs or permit unauthorized access to areas that do not require session IDs.
漏洞参考:
http://www.securityfocus.com/bid/8244
系统类型: Win2000/NT
漏洞类型:其他 Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com
页:
[1]