HTTP: IIS ASP Showcode Disclosure

This signature detects attempts to exploit the Showcode ASP vulnerability in Microsoft IIS. Successful exploitation of this vulnerability can allow an attacker to read arbitrary files on the victim host.

Extended Description

A sample Active Server Page (ASP) script installed by default on Microsoft's Internet Information Server (IIS) 4.0 gives remote users access to view any file on the same volume as the web server that is readable by the web server. IIS 4.0 installs a number of sample ASP scripts including one called "showcode.asp". This script allows clients to view the source of other sample scripts via a browser. The "showcode.asp" script does not perform sufficent checks and allows files outside the sample directory to be requested. In particular, it does not check for ".." in the path of the requested file. The script takes one parameter, "source", which is the file to view. The script's default location URL is: http://www.sitename.com/msadc/Samples/SELECTOR/showcode.asp Similar vulnerabilities have been noted in ViewCode.asp, CodeBrws.asp and Winmsdp.exe.

Affected Products

Microsoft site_server_commerce_edition

Short Name
HTTP:IIS:ASP-SHOWCODE
Severity
Warning
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
ASP CVE-1999-0736 Disclosure IIS Showcode bid:167
Release Date
04/22/2003
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3339
False Positive
Unknown
Vendors

Microsoft

CVSS Score

5.0

Found a potential security threat?