CVE-2008-0074
6.3 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
8.8%
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot, NNTPFile\Root, or WWWRoot folders.
References
marc.info/?l=bugtraq&m=120361015026386&w=2
secunia.com/advisories/28849
www.securityfocus.com/bid/27101
www.securitytracker.com/id?1019384
www.us-cert.gov/cas/techalerts/TA08-043C.html
www.vupen.com/english/advisories/2008/0507/references
docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-005
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5389
Related
6.3 Medium
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
8.8%