CVE Reference: CVE-2010-2731

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-2731

Description:
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 on Windows XP SP3, when directory-based Basic Authentication is enabled, allows remote attackers to bypass intended access restrictions and execute ASP files via a crafted request, aka "Directory Authentication Bypass Vulnerability."

CVE Status:
Candidate

References:

OVAL
  http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6942

MS
  http://www.microsoft.com/technet/security/Bulletin/MS10-065.mspx


Return to the previous page.