Description

Microsoft Internet Information Services (IIS) 5.0 does not log requests that use the TRACK method, which allows remote attackers to obtain sensitive information without detection.

Remediation

References

CVE-2003-1566

Related Vulnerabilities

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-6378)

XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46731)

PHP Other Vulnerability (CVE-2006-4484)

WordPress Plugin WP Content Copy Protection & No Right Click Cross-Site Request Forgery (3.1.5)

WordPress Plugin WooCommerce Payments-Fully Integrated Solution Built and Supported by Woo Security Bypass (5.6.1)

Severity

Medium

Classification

CVE-2003-1566

Tags

Missing Update Known Vulnerabilities