CVE-2003-1566

Currently unrated

Key Information:

Vendor: Microsoft
Status: Internet Information Services
Vendor: CVE Published:; 15 January 2009

Summary

Microsoft Internet Information Services (IIS) 5.0 does not log requests that use the TRACK method, which allows remote attackers to obtain sensitive information without detection.

References

http://archives.neohapsis.com/archives/ntbugtraq/2003-q4/...

mailing-listx_refsource_NTBUGTRAQ

http://www.osvdb.org/4864

vdb-entryx_refsource_OSVDB

https://exchange.xforce.ibmcloud.com/vulnerabilities/14077

vdb-entryx_refsource_XF

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jan 15, 2009
Vulnerability Reserved
Jan 14, 2009

Collectors

NVD DatabaseMitre Database