CVE-2002-1745 Information

Description

Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote attackers to view the source code for files with extensions containing with one additional character after .html .htm .asp or .inc such as .aspx files.

Reference

http://online.securityfocus.com/archive/1/268303 http://www.securityfocus.com/bid/4543 https://exchange.xforce.ibmcloud.com/vulnerabilities/8853