Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:61F676F72A19B5B769093C52994D539F
HistoryJul 03, 2006 - 12:00 a.m.

IIS Unicode Directory Traversal

2006-07-0300:00:00
SAINT Corporation
download.saintcorporation.com
5

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.938 High

EPSS

Percentile

99.2%

JSON

Added: 07/03/2006
CVE: CVE-2000-0884
BID: 1806
OSVDB: 436

Background

Microsoft IIS is a web server for Windows platforms.

Problem

Microsoft IIS 4.0 and 5.0 allow path validation checks to be bypassed by encoding invalid characters in Unicode. For example, a slash character is represented as %c0%af. This allows remote attackers to access any executable file on the system using a directory traversal attack from the /scripts virtual directory, leading to command execution.

Resolution

Install the patch referenced in Microsoft Security Bulletin 00-078.

References

<http://archives.neohapsis.com/archives/bugtraq/2000-10/0263.html&gt;

Limitations

Certain characters are disallowed when using this exploit to run commands.

Platforms

Windows

Related

nvd 1
saint 3
openvas 3
checkpoint_advisories 2
cvelist 1
cert 1
nessus 1
cve 1
nvd
nvd
CVE-2000-0884
2000-12-19 05:00:00
saint
saint
IIS Unicode Directory Traversal
2006-07-03 00:00:00
IIS Unicode Directory Traversal
2006-07-03 00:00:00
IIS Unicode Directory Traversal
2006-07-03 00:00:00
openvas
openvas
Microsoft IIS Directory Traversal Vulnerability (MS00-078) - Active Check
2005-11-03 00:00:00
Microsoft IIS Directory Traversal Vulnerability (MS00-078) - Active Check
2009-03-16 00:00:00
IIS directory traversal
2005-11-03 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft IIS EXE W32 Storm Worm Command Execution - Ver2 (CVE-2000-0884)
2014-04-16 00:00:00
Microsoft IIS Input Validation Directory Traversal (CVE-2000-0884)
2014-03-17 00:00:00
cvelist
cvelist
CVE-2000-0884
2001-01-22 05:00:00
cert
cert
Microsoft IIS 4.0 / 5.0 vulnerable to directory traversal via extended unicode in url
2000-11-20 00:00:00
nessus
nessus
Microsoft IIS Unicode Remote Command Execution
2000-10-18 00:00:00
cve
cve
CVE-2000-0884
2001-01-22 05:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.938 High

EPSS

Percentile

99.2%

JSON
Related for SAINT:61F676F72A19B5B769093C52994D539F
nvd1saint3openvas3checkpoint_advisories2cvelist1cert1nessus1cve1