Exploit Microsoft IIS 5.0 - Failure To Log Undocumented TRACK Requests

[Exploiter]

EDB-ID

23490

Проверка EDB

1. Пройдено

Автор

PARCIFAL AERTSSEN

Тип уязвимости

REMOTE

Платформа

WINDOWS

CVE

cve-2003-1566

Дата публикации

2003-12-29

source: https://www.securityfocus.com/bid/9313/info

A vulnerability has been reported to affect Microsoft IIS. It has been reported that IIS fails to log HTTP TRACK calls made to the affected server. A remote attacker may exploit this condition in order to enumerate server banners. 

TRACK / HTTP/1.0 [\r\r]