How to Buy
This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote Windows host is affected by a remote code execution
The remote host is running Windows Server 2003 and Internet
Information Services (IIS) 6.0 with WebDAV enabled. It is, therefore,
affected by a buffer overflow condition in the IIS WebDAV
service due to improper handling of the 'If' header in a PROPFIND
request. An unauthenticated, remote attacker can exploit this, via a
specially crafted request, to cause a denial of service condition or
the execution of arbitrary code.
EXPLODINGCAN is one of multiple Equation Group vulnerabilities and
exploits disclosed on 2017/04/14 by a group known as the Shadow
See also :
Windows Server 2003 and IIS 6.0 are no longer maintained or supported
by Microsoft. Upgrade to a currently supported version of Microsoft
Windows and IIS. Alternatively, disable either IIS or WebDAV.
Risk factor :
Critical / CVSS Base Score : 10.0
Public Exploit Available : true
Family: Web Servers
Nessus Plugin ID: 99523 ()
Bugtraq ID: 97127
CVE ID: CVE-2017-7269
Get Nessus Professional to scan unlimited IPs, run compliance checks & more
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.