ID
VAR-201005-0429
TITLE
IIS source code leak and file type parsing error
Trust: 0.6
DESCRIPTION
Vulnerability Introduction: IIS is a webserver launched by Microsoft. It is widely used. It supports ASP/asp.net and supports other languages such as PHP. However, 80sec found that there is a serious security problem in the higher version of IIS. According to the default configuration provided on the network, the server may leak the server-side script source code, or it may mistakenly use any type of file in PHP mode. Parsing, so that a malicious attacker may compromise the IIS server that supports PHP, especially the virtual host user may be affected. Vulnerability Analysis: IIS supports running PHP in CGI mode, but in this mode, IIS processing requests may cause some of the same problems as the nginx security vulnerabilities mentioned in 80sec. Any user can remotely use any type of file as PHP. The way to parse, you can see the way PHP supports in Phpinfo, which may be the problem if it is CGI/FAST-CGI.
Trust: 0.6
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | microsoft | model: | iis iis | scope: | - | version: | - | Trust: 0.6 |
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2010-0921 | Trust: 0.6 |
REFERENCES
| url: | http://www.80sec.com/iis-cgifastcgi-security-hol.html | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2010-0921 |
LAST UPDATE DATE
2022-05-04T09:44:36.458000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2010-0921 | date: | 2010-05-21T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2010-0921 | date: | 2010-05-21T00:00:00 |