MediumCheck or Attack Name: SiteServerCSC
Microsoft SiteServer 3.0 ships with an optional AdSamples directory that demonstrates the use of the Ad Server component of Site Server. If this directory is left open, it could be possible for remote attackers to retrieve a "SITE.CSC" file, which may contain database DSN's, logins, and passwords.
Remove the AdSamples directory from all production web servers.
BUGTRAQ Mailing List, [ALERT] Site Server 3.0 May Expose SQL IDs and PSWs, http://www.netspace.org/cgi-bin/wa?A2=ind9905B&L=bugtraq&P=R1947
NT Security News, AdSamples Reveal ID and PSW, http://www.ntsecurity.net/scripts/loader.asp?iD=/security/siteserver-2.htm
