IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote malicious users to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft commercial internet system 2.5 |
||
microsoft internet information server 4.0 |
||
microsoft site server commerce 3.0 |
||
microsoft internet information services 5.0 |
||
microsoft proxy server 2.0 |
||
microsoft site server 3.0 |
||
microsoft commercial internet system 2.0 |