CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
9.5%
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot, NNTPFile\Root, or WWWRoot folders.
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | internet_information_server | 6.0 | cpe:/a:microsoft:internet_information_server:6.0::: |
microsoft | internet_information_services | 5.0 | cpe:/a:microsoft:internet_information_services:5.0::: |
microsoft | internet_information_server | 6.0 | cpe:/a:microsoft:internet_information_server:6.0:beta:: |
marc.info/?l=bugtraq&m=120361015026386&w=2
secunia.com/advisories/28849
www.securityfocus.com/bid/27101
www.securitytracker.com/id?1019384
www.us-cert.gov/cas/techalerts/TA08-043C.html
www.vupen.com/english/advisories/2008/0507/references
docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-005
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5389