发布时间 :1999-12-21 00:00:00
修订时间 :2008-09-10 15:02:20

[原文]IIS 4.0 and Site Server 3.0 allow remote attackers to read source code for ASP files if the file is in a virtual directory whose name includes extensions such as .com, .exe, .sh, .cgi, or .dll, aka the "Virtual Directory Naming" vulnerability.

[CNNVD]IIS 和 Site 服务器 “虚拟目录命名”漏洞(CNNVD-199912-066)

        IIS 4.0 版本和 Site 服务器 3.0 版本中存在漏洞,如果ASP文件是在一个扩展名包括如.com,.exe,.sh,.cgi或.dll的虚拟目录中,那么远程攻击者利用该漏洞阅读ASP文件的源代码,又名“虚拟目录命名”漏洞。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:microsoft:site_server_commerce:3.0Microsoft Site Server Commerce 3.0
cpe:/a:microsoft:internet_information_server:4.0Microsoft IIS 4.0
cpe:/a:microsoft:site_server:3.0Microsoft Site Server 3.0

- OVAL (用于检测的技术细节)


- 官方数据库链接
(官方数据源) MITRE
(官方数据源) NVD
(官方数据源) CNNVD

- 其它链接及资源;%5BLN%5D;Q238606
(UNKNOWN)  MSKB  Q238606
(UNKNOWN)  MS  MS99-058

- 漏洞信息

IIS 和 Site 服务器 “虚拟目录命名”漏洞
中危 未知
1999-12-21 00:00:00 2005-10-12 00:00:00
        IIS 4.0 版本和 Site 服务器 3.0 版本中存在漏洞,如果ASP文件是在一个扩展名包括如.com,.exe,.sh,.cgi或.dll的虚拟目录中,那么远程攻击者利用该漏洞阅读ASP文件的源代码,又名“虚拟目录命名”漏洞。

- 公告与补丁


- 漏洞信息

Microsoft IIS Virtual Directory ASP Source Disclosure
Remote / Network Access Misconfiguration
Loss of Confidentiality
Exploit Public

- 漏洞描述

Microsoft IIS and Site Server contain a flaw that may allow a remote attacker to gain access to ASP page source code. The issue is triggered when ASP files are stored in virtual directories whose names include extensions such as .com, .exe, .sh, .cgi, or .dll. When an attacker requests such a file, the server will return the source code instead of processing the file normally.

- 时间线

1999-12-21 Unknow
1999-12-21 Unknow

- 解决方案

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete