NT Index Server Directory Traversal Vulnerability
Bugtraq ID:
|
950
|
Class:
|
Input Validation Error
|
CVE:
|
|
Remote:
|
Yes
|
Local:
|
Yes
|
Published:
|
Jan 26 2000 12:00AM
|
Updated:
|
Jan 26 2000 12:00AM
|
Credit:
|
Discovered by David Litchfield, publicized in CIS Advisory CISADV000126 and Microsoft Security Bulletin MS00-006, both released January 26, 2000.
|
Vulnerable:
|
Microsoft Indexing Services for Windows 2000
+
Microsoft IIS 5.0
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
Microsoft Index Server 2.0
+
Microsoft IIS 4.0
+
Microsoft IIS 4.0
|
|
Not Vulnerable:
|
|
|