oval:org.mitre.oval:def:5861

Definition Id: oval:org.mitre.oval:def:5861

Oval ID:	oval:org.mitre.oval:def:5861
Title:	IIS 5.0 WebDAV Authentication Bypass Vulnerability
Description:	The WebDAV extension in Microsoft Internet Information Services (IIS) 5.0 on Windows 2000 SP4 does not properly decode URLs, which allows remote attackers to bypass authentication, and possibly read or create files, via a crafted HTTP request, aka "IIS 5.0 WebDAV Authentication Bypass Vulnerability," a different vulnerability than CVE-2009-1535.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2009-1122	Version:	1
Platform(s):	Microsoft Windows 2000	Product(s):	Microsoft Internet Information Server 5.0
Definition Synopsis:
Microsoft Windows 2000 SP4 or later is installed AND Microsoft IIS 5.0 is installed AND the version of httpext.dll is less than 5.0.2195.7290

Definition Id: oval:org.mitre.oval:def:229

Oval ID:	oval:org.mitre.oval:def:229
Title:	Microsoft Windows 2000 SP4 or later is installed
Description:	The operating system installed on the system is Microsoft Windows 2000 SP4 or later.
Family:	windows	Class:	inventory
Reference(s):	cpe:/o:microsoft:windows_2000	Version:	11
Platform(s):	Microsoft Windows 2000	Product(s):
Definition Synopsis:
the installed operating system is part of the Microsoft Windows family AND Windows 2000 is installed AND SP4 or later Installed
Referenced By:
oval:org.mitre.oval:def:5861

Definition Id: oval:org.mitre.oval:def:731

Oval ID:	oval:org.mitre.oval:def:731
Title:	Microsoft IIS 5.0 is installed
Description:	The application Microsoft IIS 5.0 is installed.
Family:	windows	Class:	inventory
Reference(s):	cpe:/a:microsoft:iis:5.0	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft IIS 5.0
Definition Synopsis:
IIS major version equals 5 AND IIS Minor Version equals 0
Referenced By:
oval:org.mitre.oval:def:5861