Microsoft IIS 6.0 Unsupported Version Detection

Critical Nessus Plugin ID 97994

Synopsis

An unsupported version of Microsoft IIS is running on the remote Windows host.

Description

According to its self-reported version number, the installation of Microsoft Internet Information Services (IIS) 6.0 on the remote host is no longer supported.

Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities.

Solution

Upgrade to a version of Microsoft IIS that is currently supported.

See Also

http://www.nessus.org/u?d99a8431

https://www.microsoft.com/en-us/cloud-platform/windows-server-2003

Plugin Details

Severity: Critical

ID: 97994

File Name: microsoft_iis_unsupported.nasl

Version: Revision: 1.1

Type: remote

Family: Web Servers

Published: 2017/04/17

Modified: 2017/04/17

Dependencies: 10107

Risk Information

Risk Factor: Critical

CVSSv2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSSv3

Base Score: 10

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:microsoft:iis

Required KB Items: www/iis