Family: Web Servers --> Category: infos
IIS Unicode Remote Command Execution Vulnerability Scan
Vulnerability Scan Summary
Acertains if arbitrary commands can be executed thanks to IIS
Detailed Explanation for this Vulnerability Test
The remote IIS server allows anyone to execute arbitrary commands
by adding a unicode representation for the slash character
in the requested path.
Solution: See http://www.microsoft.com/technet/security/bulletin/ms00-078.mspx
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.