Filter
Microsoft Internet Information ServicesIIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files.
10
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
10
First published (updated )
Microsoft Internet Information ServicesThe "hit-highlighting" functionality in webhits.dll in Microsoft Internet Information Services (IIS)…
10
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
10
First published (updated )
Microsoft Internet Information ServicesA certain ActiveX control in iisext.dll in Microsoft Internet Information Services (IIS) allows remo…
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesBuffer Overflow
9.3
First published (updated )
Microsoft Internet Information ServicesInteger Overflow
First published (updated )
Microsoft Internet Information ServicesThe URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional SP2 a…
7.8
First published (updated )
Microsoft Internet Information ServicesMicrosoft IIS 5.0 allows remote attackers to spoof web log entries via an HTTP request that includes…
7.5
First published (updated )
Microsoft Internet Information ServicesVariant of the "IIS Cross-Site Scripting" vulnerability as originally discussed in MS:MS00-060 (CVE-…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesIIS 4.0 and 5.0 .ASP pages send the same Session ID cookie for secure and insecure web sessions, whi…
7.5
First published (updated )
Microsoft Internet Information ServicesIIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executa…
7.5
First published (updated )
Microsoft Internet Information ServicesIIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly exec…
7.5
First published (updated )
Microsoft Internet Information ServicesVulnerabilities in IIS 4.0 and 5.0 do not properly protect against cross-site scripting (CSS) attack…
7.5
First published (updated )
Microsoft Internet Information ServicesISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesInput Validation
7.5
First published (updated )
Microsoft Internet Information ServicesIn IIS, an attacker could determine a real path using a request for a non-existent URL that would be…
7.5
First published (updated )
Microsoft Internet Information ServerIn IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as …
7.5
First published (updated )
Microsoft Internet Information ServicesIIS 3.0 with the iis-fix hotfix installed allows remote intruders to read source code for ASP progra…
7.5
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesCross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remo…
7.5
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesCross-site scripting vulnerability in Help File search facility for Internet Information Server (IIS…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesCross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows rem…
7.5
First published (updated )
Microsoft Internet Information ServicesUnknown vulnerability in the hosting process (dllhost.exe) for Microsoft Internet Information Server…
7.5
First published (updated )
Microsoft Windows NTThe (1) CertGetCertificateChain, (2) CertVerifyCertificateChainPolicy, and (3) WinVerifyTrust APIs w…
7.5
First published (updated )
Microsoft Internet Information ServicesA typographical error in the script source access permissions for Internet Information Server (IIS) …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.