Filters
Microsoft Internet Information ServicesThe IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not proper…
5.1
First published (updated )
Microsoft .NET FrameworkMicrosoft .NET Framework 1.1 SP1, 2.0 SP1 and SP2, 3.5, 3.5 SP1, 3.5.1, and 4.0, as used for ASP.NET…
6.4
First published (updated )
Microsoft Internet Information ServerBuffer Overflow
4.3
First published (updated )
Microsoft Internet Information ServicesMicrosoft Internet Information Services (IIS) 5.x and 6.x uses only the portion of a filename before…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesInput Validation
First published (updated )
Microsoft Internet Information ServicesStack consumption vulnerability in the FTP Service in Microsoft Internet Information Services (IIS) …
First published (updated )
Microsoft Internet Information ServicesMicrosoft Internet Information Services (IIS) 5.0 does not log requests that use the TRACK method, w…
First published (updated )
Microsoft Internet Information ServicesA certain ActiveX control in adsiis.dll in Microsoft Internet Information Services (IIS) allows remo…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServerMicrosoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WIN…
4.4
First published (updated )
Microsoft Internet Information ServerBuffer Overflow
6.5
First published (updated )
Microsoft Internet Information ServerMicrosoft IIS 5.1 and 6 allows remote attackers to spoof the SERVER_NAME variable to bypass security…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServerThe WebDAV Message Handler for Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows remote a…
First published (updated )
Microsoft Internet Information ServicesMicrosoft Internet Information Services (IIS) 5.0 and 5.1 allows remote attackers to cause a denial …
First published (updated )
Microsoft Internet Information ServicesThe ASP function Response.AddHeader in Microsoft Internet Information Server (IIS) 4.0 and 5.0 does …
First published (updated )
Microsoft Internet Information ServerMicrosoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Symantec Norton Internet SecurityNorton Internet Security 2001 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions,…
First published (updated )
Microsoft Internet Information ServicesMicrosoft IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (CPU consumption) via…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesDirectory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote attackers to vi…
First published (updated )
Microsoft Exchange ServerThe SMTP service in Microsoft Internet Information Services (IIS) 4.0 and 5.0 allows remote attacker…
First published (updated )
Microsoft Internet Information ServicesIIS 5.0 and 5.1 allows remote attackers to cause a denial of service (crash) via malformed WebDAV re…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft SQL ServerThe MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Micros…
First published (updated )
Microsoft Internet Information ServicesThe w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Serv…
First published (updated )
Microsoft Internet Information ServicesThe FTP service in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows attackers who have esta…
First published (updated )
Microsoft Internet Information ServicesMicrosoft IIS 5.0 allows remote attackers to cause a denial of service via an HTTP request with a co…
First published (updated )
Microsoft Internet Information ServicesVulnerability in IIS 5.0 allows remote attackers to cause a denial of service (restart) via a long, …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesScripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers…
First published (updated )
Microsoft Internet Information ServicesIIS 5.0 allows remote attackers to cause a denial of service via a series of malformed WebDAV reques…
First published (updated )
Microsoft Internet Information ServicesIIS 5.0 and Microsoft Exchange 2000 allow remote attackers to cause a denial of service (memory allo…
First published (updated )
Microsoft Internet Information ServicesFrontPage Server Extensions (FPSE) in IIS 4.0 and 5.0 allows remote attackers to cause a denial of s…
First published (updated )
Microsoft Internet Information ServicesIIS 5.0 and 4.0 allows remote attackers to read the source code for executable web server programs b…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesA misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote att…
First published (updated )
Microsoft Internet Information ServicesIIS 5.0 allows remote attackers to obtain source code for .ASP files and other scripts via an HTTP G…
First published (updated )
Microsoft Internet Information ServicesIIS 4.0 and 5.0 does not properly restrict access to certain types of files when their parent folder…
6.4
First published (updated )
Microsoft Internet Information ServicesIIS 4.0 and 5.0 allows remote attackers to obtain fragments of source code by appending a +.htr to t…
First published (updated )
Microsoft Internet Information ServerAn administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesIIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that ap…
First published (updated )
Microsoft Internet Information ServicesMicrosoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to…
First published (updated )
Microsoft Internet Information ServicesThe shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers…
First published (updated )
Microsoft Commercial Internet SystemIIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mappe…
First published (updated )
Microsoft Internet Information ServerIIS 4.0 allows a remote attacker to obtain the real pathname of the document root by requesting non-…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.