Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote malicious users to view the source code for files with extensions containing with one additional character after .html, .htm, .asp, or .inc, such as .aspx files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet information services 5.0 |