Vulnerability Details CVE-2003-1566
Microsoft Internet Information Services (IIS) 5.0 does not log requests that use the TRACK method, which allows remote attackers to obtain sensitive information without detection.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.147
EPSS Ranking 94.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/ntbugtraq/2003-q4/0321.html
- http://www.aqtronix.com/Advisories/AQ-2003-02.txt
- http://www.osvdb.org/4864
- http://www.securityfocus.com/bid/9313
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14077
- http://archives.neohapsis.com/archives/ntbugtraq/2003-q4/0321.html
- http://www.aqtronix.com/Advisories/AQ-2003-02.txt
- http://www.osvdb.org/4864
- http://www.securityfocus.com/bid/9313
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14077
Products affected by CVE-2003-1566
-
cpe:2.3:a:microsoft:internet_information_services:5.0