Microsoft Internet Information Services (IIS) 7.5 uses weak permissions for the Operational log, which allows local users to discover credentials by reading this file, aka "Password Disclosure Vulnerability."
References
Configurations
Configuration 1 (hide)
AND |
|
History
05 Feb 2021, 15:37
Type | Values Removed | Values Added |
---|---|---|
CPE |
Information
Published : 2012-11-14 00:55
Updated : 2023-12-10 11:16
NVD link : CVE-2012-2531
Mitre link : CVE-2012-2531
CVE.ORG link : CVE-2012-2531
JSON object : View
Products Affected
microsoft
- windows_server_2008
- windows_7
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor