CVE-2012-2531 Information

Description

Microsoft Internet Information Services (IIS) 7.5 uses weak permissions for the Operational log which allows local users to discover credentials by reading this file aka \Password Disclosure Vulnerability.\

Reference

http://www.securityfocus.com/bid/56439 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-073 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A15959