CVE-2000-0770

IIS 4.0 and 5.0 does not properly restrict access to certain types of files when their parent folders have less restrictive permissions, which could allow remote attackers to bypass access restrictions to some files, aka the "File Permission Canonicalization" vulnerability.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2000-10-20 04:00

Updated : 2023-12-10 10:17


NVD link : CVE-2000-0770

Mitre link : CVE-2000-0770

CVE.ORG link : CVE-2000-0770


JSON object : View

Products Affected

microsoft

  • internet_information_server
  • internet_information_services