Microsoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions, which could allow remote attackers to modify the log file contents while IIS is running.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.01603
Percentile: 0.80898

CVSS Scoring

Affected Products

• cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:*:*:*:*:*
• cpe:2.3:a:microsoft:internet_information_server:4.0:*:symantec:*:*:*:*:*
• cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*

← Back to Home