Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft Internet Information Services (IIS) 5.1 permits the IUSR_Machine account to execute non-EXE files such as .COM files, which allows attackers to execute arbitrary commands via arguments to any .COM file that executes those arguments, as demonstrated using win.com when it is in a web directory with certain permissions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Information Services 安全漏洞
Vulnerability Description
Microsoft Internet Information Services(IIS)是美国微软(Microsoft)公司的一款适用于Windows Server平台的Web服务器。 Microsoft Internet Information Services (IIS) 5.1允许IUSR_Machine账号执行非可执行文件如.COM文件,攻击者通过传给任意.COM文件(这些文件执行这些自变量)的自变量来执行任意命令,如使用具有特定许可且在web目录中的win.com。
CVSS Information
N/A
Vulnerability Type
N/A