Lucene search

Commercial Internet System Security Vulnerabilities

cve

CVE-1999-0777

IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have "No Access" permissions.

6.9AI Score

0.009EPSS

2000-01-04 05:00 AM

cve

CVE-1999-0861

Race condition in the SSL ISAPI filter in IIS and other servers may leak information in plaintext.

6.7AI Score

0.001EPSS

2000-01-04 05:00 AM

cve

CVE-1999-0867

Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers.

6.5AI Score

0.005EPSS

2000-01-04 05:00 AM

cve

CVE-1999-0910

Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadvertently used by a different user.

6.9AI Score

0.002EPSS

2000-02-04 05:00 AM

cve

CVE-2000-0053

Microsoft Commercial Internet System (MCIS) IMAP server allows remote attackers to cause a denial of service via a malformed IMAP request.

6.9AI Score

0.021EPSS

2000-04-18 04:00 AM

cve

CVE-2000-0246

IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.

6.8AI Score

0.959EPSS

2000-06-02 04:00 AM