Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Internet Information Services Other Vulnerability - CVE-2006-6579 - Vulnerability Database
Internet Information Services

Internet Information Services Other Vulnerability - CVE-2006-6579

Medium
Reference: CVE-2006-6579
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2006-6579
Title: Internet Information Services Other Vulnerability
Overview:

Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for WINDIRpchealthERRORREPQHEADLES which allows local users to write and read files in this folder as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine.