59 matches found
Microsoft FrontPage Extensions - Information Disclosure
Frontpage Server Extensions allows remote attackers to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /vtibin/ virtual directory. id: CVE-2000-0114 info: name: Microsoft FrontPage Extensions - Information Disclosure author: r3naissance,matejsmycka severity...
EUVD-2003-0693
Malware in sbrugna...
VBScript RegExpComp::PnodeParse Out-Of-Bounds Read
Throughout November, I plan to release details on vulnerabilities I found in web-browsers which I've not released before. This is the sixth entry in that series. The below information is available in more detail on my blog at http://blog.skylined.nl/20161108001.html. There you can find a repro th...
VBScript CRegExp::Execute Uninitialized Memory Use
Throughout November, I plan to release details on vulnerabilities I found in web-browsers which I've not released before. This is the fifth entry in that series. The below information is available in more detail on my blog at http://blog.skylined.nl/20161107001.html. There you can find a repro th...
Internet Information Server and IAS ActiveX unauthorized access and DoS
ActiveX allows privileged actions to be silently executed...
Microsoft Internet Information Server DoS
Request like http://www.example.com/vtibin/.dll/0 for virtual folders with CGI execution enabled causes server to crash and potentially leads to code execution...
Microsoft Commerce Server 2002: Logon as known user with a false password
Microsoft Commerce Server 2002: Logon as known user with a false password Vulnerable: Microsoft Windows Server 2000/2003 + Internet Information Server 5/6 + Commerce Server 2002 Discussion: Microsoft Commerce Server is used by company's who want to give customers the opportunity to change there o...
CVE-2002-1717
Microsoft Internet Information Server IIS 5.1 allows remote attackers to view path information via a GET request to 1 /vtipvt/access.cnf, 2 /vtipvt/botinfs.cnf, 3 /vtipvt/bots.cnf, or 4 /vtipvt/linkinfo.cnf...
CVE-2002-1180
A typographical error in the script source access permissions for Internet Information Server IIS 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access Vulnerability."...
CVE-2004-0205
Buffer overflow in Microsoft Internet Information Server IIS 4.0 allows local users to execute arbitrary code via the redirect function...
ISS Security Brief: Microsoft SSL Library Remote Compromise Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security Brief April 13, 2004 Microsoft SSL Library Remote Compromise Vulnerability Synopsis: ISS X-Force has discovered a remotely exploitable buffer overflow condition in the Microsoft Secure Sockets Layer SSL library. SSL is an...
Microsoft FrontPage Server Extensions contains denial of service vulnerability in the SmartHTML interpreter
Overview The Microsoft FrontPage Server Extensions contains a vulnerability that allows unauthenticated remote attackers to conduct denial of service attacks. Description Microsoft FrontPage Server Extensions FPSE is an optional set of tools that adds functionality to a web site. This functionali...
CVE-2003-0702
Unknown vulnerability in an ISAPI plugin for ISS Server Sensor 7.0 XPU 20.16, 20.18, and possibly other versions before 20.19, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code in Internet Information Server IIS via a certain URL through SSL...
CVE-2003-0227
The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft Windows NT 4.0 and 2000, nsiislog.dll, allows remote attackers to cause a denial of service in Internet Information Server IIS and execute arbitrary code via a...
CVE-2002-0071
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server IIS 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names...
CVE-2002-0072
The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server IIS 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote attackers to cause a denial of service crash when the URL parser accesses a nu...
CVE-2002-0073
The FTP service in Internet Information Server IIS 4.0, 5.0 and 5.1 allows attackers who have established an FTP session to cause a denial of service via a specially crafted status request containing glob characters...
CVE-2002-0074
Cross-site scripting vulnerability in Help File search facility for Internet Information Server IIS 4.0, 5.0 and 5.1 allows remote attackers to embed scripts into another user's session...
CVE-2002-0075
Cross-site scripting vulnerability for Internet Information Server IIS 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other web users via the error message used in a URL redirect ""302 Object Moved" message...
CVE-2002-0079
Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server IIS 4.0 and 5.0 Active Server Pages allows attackers to cause a denial of service or execute arbitrary code...