VDB

GCVE-110-CERTCC-2001-264272

GCVE-110-CERTCC-2001-264272
Advisory Published
Vulnetix · Advisory published January 8, 2001
A vulnerability exists in Microsoft Information Server (IIS) in which a crafted HTTP GET request may return the contents of a file on the affected server. A possible target of such a request might be a script that should only be executable (not readable) by unauthenticated remote users. The contents of such a file might contain sensitive information such as user credentials for access to a back-end database. This is a variation of the vulnerability discussed in VU#35085 and Microsoft Security Bulletin MS00-031 and more recently in VU#28565 and Microsoft Security Bulletin MS00-044.

Risk Scores

certcc-cam
certcc-cam
impact7population11exploitation0widely_known20score_current13.167ease_of_exploitation19

Browse GCVE Records

73,442 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›