Filters
Microsoft Internet Information ServerMicrosoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WIN…
4.4
First published (updated )
Trend Micro Virus Control SystemTrend Micro Virus Control System (TVCS) 1.8 running with IIS allows remote attackers to cause a deni…
First published (updated )
Microsoft Internet Information ServicesThe ASP function Response.AddHeader in Microsoft Internet Information Server (IIS) 4.0 and 5.0 does …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServerMicrosoft Internet Information Server (IIS) 4.0 opens log files with FILE_SHARE_READ and FILE_SHARE_…
First published (updated )
Symantec Norton Internet SecurityNorton Internet Security 2001 opens log files with FILE_SHARE_READ and FILE_SHARE_WRITE permissions,…
First published (updated )
Microsoft Exchange ServerThe SMTP service in Microsoft Internet Information Services (IIS) 4.0 and 5.0 allows remote attacker…
First published (updated )
Microsoft Internet Information ServicesUnknown vulnerability in the hosting process (dllhost.exe) for Microsoft Internet Information Server…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesCross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remo…
7.5
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesThe w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Serv…
First published (updated )
Microsoft Internet Information ServicesThe FTP service in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows attackers who have esta…
First published (updated )
Microsoft Internet Information ServicesCross-site scripting vulnerability in Help File search facility for Internet Information Server (IIS…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesBuffer Overflow
7.5
First published (updated )
Microsoft Internet Information ServicesCross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows rem…
7.5
First published (updated )
Microsoft Internet Information ServerIIS 4.0 with URL redirection enabled allows remote attackers to cause a denial of service (crash) vi…
First published (updated )
Microsoft Internet Information ServicesBuffer Overflow
7.2
First published (updated )
Microsoft Internet Information ServerMicrosoft IIS 4.0 and before, when installed on a FAT partition, allows a remote attacker to obtain …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesScripting.FileSystemObject in asp.dll for Microsoft IIS 4.0 and 5.0 allows local or remote attackers…
First published (updated )
Microsoft Internet Information ServerDirectory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrar…
7.5
First published (updated )
Microsoft Internet Information ServicesFrontPage Server Extensions (FPSE) in IIS 4.0 and 5.0 allows remote attackers to cause a denial of s…
First published (updated )
Microsoft Internet Information ServicesIIS 5.0 and 4.0 allows remote attackers to read the source code for executable web server programs b…
First published (updated )
Microsoft Internet Information ServerMicrosoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for pars…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesVariant of the "IIS Cross-Site Scripting" vulnerability as originally discussed in MS:MS00-060 (CVE-…
7.5
First published (updated )
Microsoft Internet Information ServerBuffer Overflow
4.6
First published (updated )
Microsoft Internet Information ServicesIIS 4.0 and 5.0 .ASP pages send the same Session ID cookie for secure and insecure web sessions, whi…
7.5
First published (updated )
Microsoft Internet Information ServicesIIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executa…
7.5
First published (updated )
Microsoft Internet Information ServicesIIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly exec…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServerVulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in II…
First published (updated )
Microsoft Internet Information ServicesIIS 4.0 and 5.0 does not properly restrict access to certain types of files when their parent folder…
6.4
First published (updated )
Microsoft Internet Information ServicesVulnerabilities in IIS 4.0 and 5.0 do not properly protect against cross-site scripting (CSS) attack…
7.5
First published (updated )
Microsoft Internet Information ServicesIIS 4.0 and 5.0 allows remote attackers to obtain fragments of source code by appending a +.htr to t…
First published (updated )
Microsoft Internet Information ServerAn administrative script from IIS 3.0, later included in IIS 4.0 and 5.0, allows remote attackers to…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and …
7.5
First published (updated )
Microsoft Internet Information ServicesIIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that ap…
First published (updated )
Microsoft Internet Information ServicesMicrosoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to…
First published (updated )
Microsoft Internet Information ServicesThe shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServicesInput Validation
7.5
First published (updated )
Microsoft Commercial Internet SystemIIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mappe…
First published (updated )
Microsoft Internet Information ServerIIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long…
2.1
First published (updated )
Microsoft Internet Information ServerFrontpage Server Extensions allows remote attackers to determine the name of the anonymous account v…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.