Description

Microsoft Internet Information Services (IIS) 5.0 does not log requests that use the TRACK method, which allows remote attackers to obtain sensitive information without detection.

Remediation

References

CVE-2003-1566

Related Vulnerabilities

WordPress Plugin Email Log Information Disclosure (1.9)

WordPress Plugin VM Backups Cross-Site Request Forgery (1.0)

WordPress Plugin Landing Page Builder-Lead Page-Optin Page-Squeeze Page-WordPress Landing Pages Cross-Site Scripting (1.4.9.8.9)

Python Integer Overflow or Wraparound Vulnerability (CVE-2017-1000158)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5339)

Severity

Medium

Classification

CVE-2003-1566

Tags

Missing Update Known Vulnerabilities