CVE Vulnerability

CVE-2008-0074

Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot, NNTPFileRoot, or WWWRoot folders.

7.2 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://www.us-cert.gov/cas/techalerts/TA08-043C.html US Government Resource
http://www.securityfocus.com/bid/27101
http://www.securitytracker.com/id?1019384
http://secunia.com/advisories/28849
http://marc.info/?l=bugtraq&m=120361015026386&w=2
http://www.vupen.com/english/advisories/2008/0507/references
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5389
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-005
Configurations

Configuration 1

cpe:2.3:a:microsoft:internet_information_server:6.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_server:6.0:beta:*:*:*:*:*:*
Information

Published : 2008-02-12 09:00

Updated : 2021-02-05 03:37

NVD link : CVE-2008-0074

Mitre link : CVE-2008-0074

Products Affected
No products.
CWE
CWE-264

NVD-CWE-noinfo