By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Internet_information_server | Microsoft | 4.0 (including) | 4.0 (including) |