| VID |
27061 |
| Severity |
40 |
| Port |
135 |
| Protocol |
TCP |
| Class |
WMI |
| Detailed Description |
CGI script should be executed designated directory. If CGI script can be executed in some directories which are stored uploaded file like dash board or downloads, It may be used way for leaking the main information and an violating accident.
* Platforms Affected:
Microsoft IIS Server |
| Recommendation |
¡á IIS 5.0, 6.0, 7.0, 8.0, 10.0
1. Explorer> Select a directory> Properties> Security (CGI directory - C:\inetpub\scripts)
2. Remove "whole privileges", "modify privileges" and "write privileges" of Everyone |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
