Detections
Analytics

Microsoft IIS Potentially Compromised Host Detection

critical Nessus Plugin ID 11003

Synopsis

The remote system may be compromised.

Description

One or more files were found on this host that indicate a possible compromise.

Solution

Investigate the discovered files.

Plugin Details

Severity: Critical

ID: 11003

File Name: DDI_IIS_Compromised.nasl

Version: 1.50

Type: remote

Family: Backdoors

Published: 6/5/2002

Updated: 1/3/2023

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Score based on in depth analysis of web-shell exposures by tenable.

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: manual

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

Required KB Items: Settings/ThoroughTests

Exploited by Nessus: true