oval:org.mitre.oval:def:931

Definition Id: oval:org.mitre.oval:def:931

Oval ID:	oval:org.mitre.oval:def:931
Title:	IIS5.0 Script Source Access Vulnerability
Description:	A typographical error in the script source access permissions for Internet Information Server (IIS) 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2002-1180	Version:	2
Platform(s):	Microsoft Windows 2000	Product(s):	Microsoft Internet Information Server (IIS)
Definition Synopsis:
IIS major version equals 5 AND IIS minor version equals 0 AND File %windir%\System32\msw3prt.dll is less than 5.0.2195.5807 AND NOT Patch Q327696 Installed AND NOT Patch Q811114 Installed