Microsoft IIS FrontPage Extensions Detection

High Nessus Network Monitor Plugin ID 2180

Synopsis

The remote host is running Microsoft IIS with FrontPage Extensions.

Description

The remote host is running Microsoft IIS with FrontPage Extensions.

Solution

Ensure that you are running a fully patched version of FrontPage and that access to the FrontPage application is limited to authorized developers and/or administrators.

Plugin Details

Severity: High

ID: 2180

File Name: 2180.prm

Family: Web Servers

Published: 2004/08/30

Modified: 2016/01/15

Dependencies: 1724

Nessus ID: 11923

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSSv3

Base Score: 7.3

Temporal Score: 6.8

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Exploitable With

CANVAS (CANVAS)

Metasploit (Microsoft IIS ISAPI FrontPage fp30reg.dll Chunked Overflow)

Reference Information

CVE: CVE-2003-0822, CVE-2003-0824

BID: 9007, 9008