Oval Definition:	oval:org.mitre.oval:def:931
Revision Date: 2005-02-16 Version: 42 Title: IIS5.0 Script Source Access Vulnerability Description: A typographical error in the script source access permissions for Internet Information Server (IIS) 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access Vulnerability." Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-1180 Platform(s): Microsoft Windows 2000 Product(s): Microsoft Internet Information Server (IIS) Definition Synopsis IIS major version equals 5 AND IIS minor version equals 0 AND File %windir%\System32\msw3prt.dll is less than 5.0.2195.5807 AND NOT Patch Q327696 Installed AND NOT Patch Q811114 Installed
BACK