Lucene search
HistoryJan 22, 2001 - 5:00 a.m.
CVE-2000-0951
cve-2000-0951
iis 5.0
misconfiguration
webdav
index server
remote attack
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.038 Low
EPSS
Percentile
91.9%
A misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote attackers to list directories in the web root via a Web Distributed Authoring and Versioning (WebDAV) search.
Affected configurations
Node
microsoftinternet_information_servicesMatch5.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:internet_information_services | microsoft internet information services | eq | 5.0 |
Related
cvelist
cvelist
CVE-2000-0951
2001-01-22 05:00:00
nvd
nvd
CVE-2000-0951
2000-12-19 05:00:00
nessus
nessus
Microsoft IIS WebDAV SEARCH Method Arbitrary Directory Forced Listing
2000-10-05 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.038 Low
EPSS
Percentile
91.9%
Related for CVE-2000-0951