Definition

Windows NT IIS Directory Traversal Command Execution (Test 1)

oval:org.mitre.oval:def:37

Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.

Family:

windows

Status:

ACCEPTED

Platform(s):

Microsoft Windows NT

Class:

vulnerability

Reference(s):

CVE-2001-0333

Product(s):

Microsoft Internet Information Server (IIS)