|
|
Family: CGI abuses --> Category: infos
ASP/ASA source using Microsoft Translate f: bug Vulnerability Scan
Vulnerability Scan Summary
downloads the source of IIS scripts such as ASA,ASP
Detailed Explanation for this Vulnerability Test
There is a serious vulnerability in Windows 2000 (unpatched by SP1) that
allows a possible hacker to view ASP/ASA source code instead of a processed file.
ASP source code can contain sensitive information such as username's and
passwords for ODBC connections.
Solution : install all the latest Microsoft Security Patches (Note: This
vulnerability is eliminated by installing Windows 2000 Service Pack 1)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
