| VID |
22036 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The Microsoft IIS 4.0/5.0 server allows remote attackers to read the source code which should otherwise be inaccessible for executable web server programs. This is done by appending "+.htr" or "%3F+.htr" to a request for a known .asp (or .asa, .ini, etc) file, which causes the files to be parsed by the .HTR ISAPI extension, aka a variant of the "File Fragment Reading via .HTR" vulnerability.
* References:
http://www.microsoft.com/technet/security/bulletin/MS01-004.asp
http://www.iss.net/security_center/static/5903.php |
| Recommendation |
Upgrade to IIS of at least 6.0 version. |
| Related URL |
CVE-2001-0004 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
