Lucene search
HistorySep 18, 2001 - 4:00 a.m.
CVE-2001-0335
cve-2001-0335
iis 5.0
ftp service
remote attack
guest account enumeration
nvd.
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
High
0.029 Low
EPSS
Percentile
90.8%
FTP service in IIS 5.0 and earlier allows remote attackers to enumerate Guest accounts in trusted domains by preceding the username with a special sequence of characters.
Affected configurations
Node
microsoftinternet_information_serverRange≤5.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:internet_information_server | microsoft internet information server | le | 5.0 |
Related
nvd
nvd
CVE-2001-0335
2001-06-27 04:00:00
cvelist
cvelist
CVE-2001-0335
2001-09-18 04:00:00
cert
cert
Microsoft IIS FTP service searches all trusted domains for user accounts
2001-09-18 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.7 Medium
AI Score
Confidence
High
0.029 Low
EPSS
Percentile
90.8%
Related for CVE-2001-0335