Detections
Analytics

CVE-2008-0074

high

Description

Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot, NNTPFile\Root, or WWWRoot folders.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5389

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-005

http://www.vupen.com/english/advisories/2008/0507/references

http://www.us-cert.gov/cas/techalerts/TA08-043C.html

http://www.securitytracker.com/id?1019384

http://www.securityfocus.com/bid/27101

http://secunia.com/advisories/28849

http://marc.info/?l=bugtraq&m=120361015026386&w=2

Details

Source: Mitre, NVD

Published: 2008-02-12

Updated: 2025-04-09

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.02668