New Search

Windows NT IIS System File Listing Privilege Elevation Vulnerability

oval:org.mitre.oval:def:909

IIS 5.0 uses relative paths to find system files that will run in-process which allows local users to gain privileges via a Trojan horse file aka the "System file listing privilege elevation" vulnerability.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows NT
Class:
vulnerability
Reference(s):
  • CVE-2001-0507
Product(s):
  • Microsoft Internet Information Server (IIS)