<a name="1280"></a><a name="beginpage.E15BD6DD-AA10-453E-9BEB-F1CECC24ECD4"></a>1    #2    # This script was written by Matt Moore 3    # Majority of code from plugin fragment and advisory by H D Moore 4    #5    # no relation :-)6    #7    8    9    if(description)10   { 11   script_id(10956);12   script_cve_id("CVE-1999-0739");13   script_version("$Revision: 1.8 $");14   name["english"] = "Codebrws.asp Source Disclosure Vulnerability";15   script_name(english:name["english"]);16   17   desc["english"] = "18   Microsoft's IIS 5.0 web server is shipped with a set of19   sample files to demonstrate different features of the ASP20   language. One of these sample files allows a remote user to21   view the source of any file in the web root with the extension22   .asp, .inc, .htm, or .html.23   24   Solution:25   26   Remove the /IISSamples virtual directory using the Internet Services Manager.27   If for some reason this is not possible, removing the following ASP script will28   fix the problem:29   30   This path assumes that you installed IIS in c:\ inetpub31   32   c:\ inetpub\ iissamples\ sdk\ asp\ docs\ CodeBrws.asp33   34   35   Risk factor : High";36   37   script_description(english:desc["english"]);38...