NVD

Id
14178  
Name
CVE-2010-2731  
Description
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 on Windows XP SP3, when directory-based Basic Authentication is enabled, allows remote attackers to bypass intended access restrictions and execute ASP files via a crafted request, aka "Directory Authentication Bypass Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-18  
Published
2010-09-15  
Modified Date
2011-07-18  
Seq
2010-2731  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
78360 14178 CVE-2010-2731 oval:org.mitre.oval:def:6942  View
78361 14178 CVE-2010-2731 MS10-065  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
36318 JVNDB-2010-002098 Windows 上で稼働する Microsoft Internet Information Services におけるアクセス制限を回避される脆弱性 Windows 上で稼働する Microsoft Internet Information Services (IIS) には、directory-based 基本認証が有効の際、アクセス制限を回避され、ASP ファイルを実行される脆弱性が存在します。 CVE-2010-2731 45311 CVE-2010-2731 14178 6.8 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002098.html 2010-09-14 2010-10-06 View