CVE-1999-1538

1999-01-14T00:00:00
ID CVE-1999-1538
Type cve
Reporter NVD
Modified 2016-10-17T22:05:41

Description

When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does not restrict access to the local machine and allows an unauthorized user to gain access to sensitive server information, including the Administrator's password.