Filter
AND
AND
Microsoft Internet Information ServicesISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and …
7.5
First published (updated )
Microsoft Internet Information ServicesThe shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers…
First published (updated )
Microsoft Internet Information ServicesIIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that ap…
First published (updated )
Microsoft Internet Information ServicesMicrosoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to…
First published (updated )
Microsoft Internet Information ServicesInput Validation
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Commercial Internet SystemIIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mappe…
First published (updated )
Microsoft Internet Information ServerIIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long…
2.1
First published (updated )
Microsoft Internet Information ServerSample Internet Data Query (IDQ) scripts in IIS 3 and 4 allow remote attackers to read files via a .…
First published (updated )
Microsoft Internet Information ServerFrontpage Server Extensions allows remote attackers to determine the name of the anonymous account v…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServerIIS 4.0 allows a remote attacker to obtain the real pathname of the document root by requesting non-…
First published (updated )
Microsoft Site ServerIIS 4.0 and Site Server 3.0 allow remote attackers to read source code for ASP files if the file is …
First published (updated )
Microsoft Site ServerIIS does not properly canonicalize URLs, potentially allowing remote attackers to bypass access rest…
6.4
First published (updated )
Microsoft Internet Information ServerWhen IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does…
2.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServerIIS 3.x and 4.x does not distinguish between pages requiring encryption and those that do not, which…
First published (updated )
Microsoft Internet Information ServerThe Sun HotSpot Performance Engine VM allows a remote attacker to cause a denial of service on any s…
First published (updated )
Microsoft Site ServerThe Winmsdp.exe sample file in IIS 4.0 and Site Server 3.0 allows remote attackers to read arbitrary…
First published (updated )
Microsoft Internet Information ServerBuffer Overflow
10
First published (updated )
Microsoft Internet Information ServerFileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read …
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServerIIS 4.0 does not properly restrict access for the initial session request from a user's IP address i…
7.5
First published (updated )
Microsoft Internet Information ServerFTP service in IIS 4.0 and earlier allows remote attackers to cause a denial of service (resource ex…
First published (updated )
Microsoft Internet Information ServerIIS 3.0 and 4.0 on x86 and Alpha allows remote attackers to cause a denial of service (hang) via a m…
First published (updated )
Microsoft Data Access ComponentsThe Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in II…
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Microsoft Internet Information ServerIIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have…
7.5
First published (updated )
Microsoft Internet Information ServerThe showcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
First published (updated )
Microsoft Internet Information ServerThe codebrws.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.