- Home
- CVEs with nessus.description==The remote host appears to be running a version of IIS which allows
remote users to determine which authentication schemes are required for
confidential web pages.
That is, by requesting valid web pages with purposely invalid
credentials, you can ascertain whether or not the authentication scheme
is in use. This can be used for brute-force attacks against known
USerIDs.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top