5 matches found
Nmap NSE 6.01: http-iis-webdav-vuln
This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Nmap NSE net: http-iis-webdav-vuln
This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2009-1535
CVE-2009-1535 corresponds to the IIS WebDAV Unicode authentication bypass vulnerability affecting IIS 5.1/6.0. The issue permits remote bypass of URI-based protections and can allow listing, reading, creation, or modification of files by injecting a Unicode sequence (notably %c0%af) into the URI,...
CVE-2009-1676
DO NOT USE THIS CANDIDATE NUMBER; CVE-2009-1676 is rejected and should refer to CVE-2009-1535.
Microsoft IIS WebDAV Unicode Request Directory Security Bypass
IIS 6.0 does not properly sanitize WebDAV requests. It is possible to access protected resources by inserting a Unicode / %c0%af in the URL. Depending on the remote server configuration, protected resources may be browsed, read and/or modified. C Tenable Network Security, Inc. include"compat.inc"...