Security Advisory

CVE-1999-1538

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2001-09-12 04:00:00

Last updated 2024-08-01 17:18:07

Assigner mitre

State PUBLISHED

Description

When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does not restrict access to the local machine and allows an unauthorized user to gain access to sensitive server information, including the Administrators password.

← Browse all CVEs View on cve.org ↗