Back to search
CVE-2006-6579
Published: Dec 15, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20061213 ASP Cmd Shell On IIS 5.1
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now