Microsoft IIS / Site Server codebrws.asp Arbitrary File Access
Remote / Network Access
Loss of Confidentiality
Microsoft IIS and Site Server contains a flaw that allows a remote attacker to arbitrary access files outside of the web path. The issue is due to the 'codebrws.asp' script not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the 'source' variable.
Microsoft has released a patch to address this vulnerability. It is also possible to correct the flaw by implementing the following workaround: Remove the /IISSamples virtual directory when not needed. As a general rule, do not install sample scripts or sample applications on a production server.