Description

A typographical error in the script source access permissions for Internet Information Server (IIS) 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access Vulnerability."

Remediation

References

CVE-2002-1180

Related Vulnerabilities

WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Cross-Site Request Forgery (2.0.1.6)

WordPress 6.5.x Multiple Vulnerabilities (6.5 - 6.5.4)

WordPress Plugin jQuery Reply to Comment Cross-Site Request Forgery (1.31)

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-1757)

WordPress Plugin Event Calendar WD-Responsive Event Calendar Cross-Site Scripting (1.1.23)

Severity

High

Classification

CVE-2002-1180

Tags

Missing Update Known Vulnerabilities