Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

exploitpack
exploitpackadded 2012/07/02 12:0 a.m.12 views

Microsoft IIS - Short FileFolder Name Disclosure

Microsoft IIS - Short FileFolder Name Disclosure PoC: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/19525.zip Paper: http://www.exploit-db.com/docs/19527.pdf Security Research - IIS Short File/Folder Name Disclosure Website : http://soroush.secproject.com/blog...

7.4AI score
Exploits0
The Hacker News
The Hacker Newsadded 2010/11/12 7:8 a.m.10 views

Vulnerability in Microsoft IIS Allows Malicious File Uploads

A vulnerability has been identified in Microsoft Internet Information Services IIS that causes the server to incorrectly handle files with multiple extensions separated by the “;” character. For instance, a file named “malicious.asp;.jpg” is treated as an ASP file. This flaw allows attackers to...

7.2AI score
Exploits0
NVD
NVDadded 2002/04/22 4:0 a.m.20 views

CVE-2002-0072

The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server IIS 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote attackers to cause a denial of service crash when the URL parser accesses a nu...

5CVSS6.5AI score0.33443EPSS
Exploits1References8
securityvulns
securityvulnsadded 2002/04/17 12:0 a.m.23 views

Microsoft FTP Service STAT Globbing DoS

A copy of this document can be found online at: http://www.digitaloffense.net/msftpd/advisory.txt ----------------------------------------------------------------------------------------------- -- Microsoft FTP Service STAT Globbing DoS Summary: The Microsoft FTP service is vulnerable to a Denial...

7.4AI score
Exploits0
VulnCheck KEV
VulnCheck KEVadded 2001/07/19 12:0 a.m.2 views

VulnCheck KEV: CVE-2001-0500

Buffer overflow in ISAPI extension idq.dll in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration .ida and Internet Data Query .idq files such as default.ida, as...

10CVSS6.2AI score0.90188EPSS
Exploits5References1
Cvelist
Cvelistadded 2001/01/22 5:0 a.m.19 views

CVE-2000-0970

IIS 4.0 and 5.0 .ASP pages send the same Session ID cookie for secure and insecure web sessions, which could allow remote attackers to hijack the secure web session of the user if that user moves to an insecure session, aka the "Session ID Cookie Marking" vulnerability...

6.7AI score0.3846EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 1999/12/31 12:0 a.m.3 views

PT-1999-1008 · Microsoft · Iis

Name of the Vulnerable Software and Affected Versions: IIS versions 2.0 through 3.0 Description: The issue allows remote attackers to read the source code for ASP pages by appending a . dot to the end of the URL. Recommendations: For IIS versions 2.0 through 3.0, consider restricting access to AS...

5CVSS6.5AI score0.48235EPSS
Exploits0References4
Rows per page
Query Builder