Microsoft Internet Information Services 5 Authentication Bypass Vulnerability

2015年7月21日

Email
Facebook
Twitter
Google+
Linkedin

危険度: : 中

CVE識別番号: CVE-2010-2731,MS10-065

概要

Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 on Windows XP SP3, when directory-based Basic Authentication is enabled, allows remote attackers to bypass intended access restrictions and execute ASP files via a crafted request, aka "Directory Authentication Bypass Vulnerability."

トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

対応方法

Trend Micro Deep Security DPI Rule Number: 1004270

Trend Micro Deep Security DPI Rule Name: 1004270 - Microsoft Internet Information Services 5 Authentication Bypass Vulnerability

影響を受けるソフトウェア

Microsoft IIS 5.1