Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Internet Information Services Improper Authentication Vulnerability - CVE-2009-1122 - Vulnerability Database
Internet Information Services

Internet Information Services Improper Authentication Vulnerability - CVE-2009-1122

High
Reference: CVE-2009-1122
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2009-1122
Title: Internet Information Services Improper Authentication Vulnerability
Overview:

The WebDAV extension in Microsoft Internet Information Services (IIS) 5.0 on Windows 2000 SP4 does not properly decode URLs which allows remote attackers to bypass authentication and possibly read or create files via a crafted HTTP request aka quotIIS 5.0 WebDAV Authentication Bypass Vulnerabilityquot a different vulnerability than CVE-2009-1535.