File Permission Canonicalization Vulnerability in IIS 4.0 and 5.0

CVE-2000-0770 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

IIS 4.0 and 5.0 does not properly restrict access to certain types of files when their parent folders have less restrictive permissions, which could allow remote attackers to bypass access restrictions to some files, aka the "File Permission Canonicalization" vulnerability.

Learn more about our Web Application Penetration Testing UK.