Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2014/11/12 12:0 a.m.358 views

Microsoft Internet Information Services Security Feature Bypass Vulnerability (2982998)

This host is missing an important security update according to Microsoft Bulletin MS14-076. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...

5.1CVSS7.5AI score0.18011EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/11/12 12:0 a.m.1729 views

MS14-076: Vulnerability in Internet Information Services (IIS) Could Allow Security Feature Bypass (2982998)

The remote Windows host is affected by a security feature bypass vulnerability that can lead to a bypass of the 'IP Address and Domain Restrictions' filtering rules. Successful exploitation of this vulnerability by a remote attacker allows clients from restricted or blocked domains to gain access...

5.1CVSS7.8AI score0.18011EPSS
Exploits0References2
CVE
CVE
added 2014/11/11 10:0 p.m.5718 views

CVE-2014-4078

CVE-2014-4078 affects Microsoft Internet Information Services (IIS) 8.0 and 8.5. The vulnerability is in the IP Security feature, where wildcard rules in the IP Address and Domain Restrictions list are not properly processed, enabling a remote attacker to bypass the intended rule set via an HTTP ...

5.1CVSS7.3AI score0.18011EPSS
Exploits0References3Affected Software1
Kaspersky
Kaspersky
added 2014/11/11 12:0 a.m.662 views

KLA10610 Security bypass vulnerability in Microsoft IIS

Improper wildcard processing was found in Microsoft IIS. By exploiting this vulnerability malicious users can bypass intended rules. This vulnerability can be exploited remotely via a specially designed HTTP request. Original advisories CVE-2014-4078 Related products...

5.1CVSS8.5AI score0.18011EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2014/08/13 12:0 a.m.98 views

Microsoft Internet Explorer Multiple Vulnerabilities (2976627)

This host is missing a critical security update according to Microsoft Bulletin MS14-051. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS7.4AI score0.26349EPSS
Exploits0References33
Rows per page
Query Builder