Microsoft IIS Directory Traversal Vulnerability
Gravedad: High
Identificadores de CVE : CVE-2001-0333
Descripción
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.
Revelación de la información
Apply associated Trend Micro DPI Rules.
Soluciones
Trend Micro Deep Security DPI Rule Number: 1000128
Trend Micro Deep Security DPI Rule Name: 1000128 - HTTP Protocol Decoding
Software y versión afectados
- Microsoft IIS 4.0
- Microsoft IIS 5.0