3 matches found
Microsoft IIS ASP Scripts Source Code Disclosure (CVE-2005-2678)
The Internet Information Server IIS is a Web server packaged with several versions of the Windows operating system. The server is capable of serving static, as well as dynamic content. The server is equipped with the Active Server Pages ASP technology which is utilized for dynamic content...
CVE-2005-2678
Microsoft IIS 5.1 and 6 allows remote attackers to spoof the SERVERNAME variable to bypass security checks and conduct various attacks via a GET request with an http://localhost URI, which makes it appear as if the request is coming from localhost...
CVE-2005-2678
CVE-2005-2678 affects Microsoft IIS 5.1 and IIS 6. The issue allows remote attackers to spoof the SERVER_NAME variable by issuing a GET request containing an http://localhost URI, bypassing security checks and enabling various attacks. Some connected sources also describe an ASP source code discl...