Description
In some versions of Microsoft IIS, it is possible to detect the existence of files using an 8.3 short filename (SFN). This vulnerability allows attackers to enumerate and find sensitive files on the web server, potentially leading to unauthorized access or exposure of confidential information.
Test for IIS Tilde Vulnerability with SmartScanner
Donwload FREE!Recommendation
Please read the reference for detailed information and mitigation strategies specific to this vulnerability.
References
Related Issues
- Directory Listing of Sensitive Files - Vulnerability
- Directory Listing - Vulnerability
- User Enumeration - Vulnerability
- WordPress User Enumeration - Vulnerability
- Tags:
- Information Disclosure
- IIS
- Directory Listing
- File Disclosure
Anything's wrong? Let us know Last updated on May 13, 2024