Lucene search
SAINT CorporationSAINT:62771F349F34F81B3174EDB54EFA0E0BHistoryJul 03, 2006 - 12:00 a.m.
IIS Unicode Directory Traversal
2006-07-0300:00:00
SAINT Corporation
www.saintcorporation.com
57
0.938 High
EPSS
Percentile
99.2%
Added: 07/03/2006
CVE: CVE-2000-0884
BID: 1806
OSVDB: 436
Background
Microsoft IIS is a web server for Windows platforms.
Problem
Microsoft IIS 4.0 and 5.0 allow path validation checks to be bypassed by encoding invalid characters in Unicode. For example, a slash character is represented as %c0%af. This allows remote attackers to access any executable file on the system using a directory traversal attack from the /scripts virtual directory, leading to command execution.
Resolution
Install the patch referenced in Microsoft Security Bulletin 00-078.
References
<http://archives.neohapsis.com/archives/bugtraq/2000-10/0263.html>
Limitations
Certain characters are disallowed when using this exploit to run commands.
Platforms
Windows
Related
nvd
nvd
CVE-2000-0884
2000-12-19 05:00:00
saint
saint
IIS Unicode Directory Traversal
2006-07-03 00:00:00
IIS Unicode Directory Traversal
2006-07-03 00:00:00
IIS Unicode Directory Traversal
2006-07-03 00:00:00
openvas
openvas
Microsoft IIS Directory Traversal Vulnerability (MS00-078) - Active Check
2009-03-16 00:00:00
Microsoft IIS Directory Traversal Vulnerability (MS00-078) - Active Check
2005-11-03 00:00:00
IIS directory traversal
2005-11-03 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft IIS EXE W32 Storm Worm Command Execution - Ver2 (CVE-2000-0884)
2014-04-16 00:00:00
Microsoft IIS Input Validation Directory Traversal (CVE-2000-0884)
2014-03-17 00:00:00
cvelist
cvelist
CVE-2000-0884
2001-01-22 05:00:00
cert
cert
nessus
nessus
Microsoft IIS Unicode Remote Command Execution
2000-10-18 00:00:00
cve
cve
CVE-2000-0884
2001-01-22 05:00:00