Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in ssinc.dll in IIS 5.0 and 4.0 allows local users to gain system privileges via a Server-Side Includes (SSI) directive for a long filename, which triggers the overflow when the directory name is added, aka the "SSI privilege elevation" vulnerability.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
IIS ssinc.dll缓冲区溢出漏洞
Vulnerability Description
IIS 5.0和4.0版本ssinc.dll存在缓冲区溢出漏洞。本地用户借助超长文件名Server-Side Includes (SSI)指令提升系统特权。该漏洞当添加文件名时触发溢出,也称为“SSI特权提升”漏洞。
CVSS Information
N/A
Vulnerability Type
N/A