WEB APPLICATION VULNERABILITIES Standard & Premium

Internet Information Services Other Vulnerability (CVE-2000-0770)

Description

IIS 4.0 and 5.0 does not properly restrict access to certain types of files when their parent folders have less restrictive permissions, which could allow remote attackers to bypass access restrictions to some files, aka the "File Permission Canonicalization" vulnerability.

Remediation

References

Related Vulnerabilities

SharePoint Out-of-bounds Write Vulnerability (CVE-2021-1715)

Mailman Other Vulnerability (CVE-2001-1132)

WordPress Plugin Nokia Maps & Places Cross-Site Scripting (1.6.6)

Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.15)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3180)

Severity

Medium

Classification

CVE-2000-0770

Tags

Missing Update Known Vulnerabilities