High severity7.5NVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026
CVE-2002-1745
CVE-2002-1745
Description
Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html, .htm, .asp, or .inc, such as .aspx files.
Affected products
2- cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- online.securityfocus.com/archive/1/268303nvdBroken LinkThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/4543nvdBroken LinkThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/8853nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.