4 matches found
CVE-2001-0333
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. dot dot and "" characters twice...
CVE-2001-0333
CVE-2001-0333 is a directory-traversal vulnerability in Microsoft IIS 5.0 and earlier. An attacker can craft requests that double-encode dot-dot and backslash characters to bypass checks and remotely execute commands on the server. This is associated with MS01-026/MS01-044 (IIS CGI double-decode)...
Immunity Canvas: IIS_DOUBLEDECODE
Name| iisdoubledecode ---|--- CVE| CVE-2001-0333 Exploit Pack| CANVAS Description| iisdoubledecode MS01-026 Notes| CVE Name: CVE-2001-0333 VENDOR: Microsoft Notes: The IIS Double Decode module will automatically use tftp to get a MOSDEF node on the remote target. This will not work through a...
CVE-2001-0333
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. dot dot and "" characters twice...