Description

IISv5 has a "Hit-highlighting" functionality that opens some site object and highlights some part of it, that has had a transversal vulnerability in the past. Now it can be used to bypass the IIS authentication.

Remediation

Protect the files from the NTFS filesystem instead of relying on the IIS protection.
Microsoft recommends not to use IISv5 and update to IISv6.

References

Microsoft IIS5 NTLM and Basic authentication bypass

Related Vulnerabilities

WordPress Plugin FunCaptcha-Anti-Spam CAPTCHA Multiple Cross-Site Scripting Vulnerabilities (0.4.3)

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-1939)

WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.11)

WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.30)

XWiki Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2023-29514)

Severity

High

Classification

CVE-2007-2815 CWE-264 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Authentication Bypass Configuration Information Disclosure Missing Update