CVE-2007-2815

Microsoft IIS Web Server 5.0 - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-2815. PoCs published by Sha0.

AI-analyzed exploit summary This script exploits an authentication bypass vulnerability in Microsoft IIS by crafting a malicious URL that leverages the 'CiWebhitsfile' parameter to access protected objects without proper authentication.

Description

The "hit-highlighting" functionality in webhits.dll in Microsoft Internet Information Services (IIS) Web Server 5.0 only uses Windows NT ACL configuration, which allows remote attackers to bypass NTLM and basic authentication mechanisms and access private web directories via the CiWebhitsfile parameter to null.htw.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Sha0 · bashremotewindows

https://www.exploit-db.com/exploits/4016

View Code ZIP pw:eip

This script exploits an authentication bypass vulnerability in Microsoft IIS by crafting a malicious URL that leverages the 'CiWebhitsfile' parameter to access protected objects without proper authentication.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Microsoft IIS (versions affected by CVE-2007-2815)

No auth needed

Prerequisites: Access to the target web server · Lynx or similar HTTP client installed

MITRE ATT&CK