Description

Microsoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while IIS is running.

Remediation

References

CVE-2002-1694

Related Vulnerabilities

MySQL CVE-2013-1555 Vulnerability (CVE-2013-1555)

Drupal Core 7.x Security Bypass (7.0 - 7.43)

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-25276)

WordPress Plugin Forminator-Contact Form, Payment Form & Custom Form Builder Cross-Site Request Forgery (1.14.8)

Drupal Other Vulnerability (CVE-2006-1226)

Severity

Medium

Classification

CVE-2002-1694

Tags

Missing Update Known Vulnerabilities