Detections
Analytics

Microsoft IIS Dangerous Sample Files Detection

info Nessus Plugin ID 10370

Language:

Synopsis

The remote web server is hosting sample files.

Description

Some of the IIS sample files are present.

They all contain various security flaws which could allow an attacker to execute arbitrary commands, read arbitrary files or gain valuable information about the remote system.

Solution

Delete the whole /iissamples directory

See Also

http://www.securityfocus.com/infocus/1318

http://technet.microsoft.com/en-us/library/cc750570.aspx

Plugin Details

Severity: Info

ID: 10370

File Name: iis_samples.nasl

Version: 1.42

Type: remote

Family: CGI abuses

Published: 4/15/2000

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Vulnerability Information

CPE: cpe:/a:microsoft:iis

Required KB Items: www/ASP