Microsoft IIS 2.0/3.0/4.0 ISAPI GetExtensionVersion() Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/501/info IIS and potentially other NT web servers have a vulnerability that could allow arbitrary code to be run as SYSTEM. This works because of the way the server calls the GetExtensionVersion function the first time an...

MS IIS 4.0/5.0 and PWS Extended Unicode Directory Traversal Vulnerability (4)

No description provided by source. source: http://www.securityfocus.com/bid/1806/info Microsoft IIS 4.0 and 5.0 are both vulnerable to double dot ../ directory traversal exploitation if extended UNICODE character representations are used in substitution for / and . Unauthenticated users may acces...

CVE-2010-1256

Unspecified vulnerability in Microsoft IIS 6.0, 7.0, and 7.5, when Extended Protection for Authentication is enabled, allows remote authenticated users to execute arbitrary code via unknown vectors related to "token checking" that trigger memory corruption, aka "IIS Authentication Memory Corrupti...

Microsoft IIS 5.1 - WebDAV HTTP Request Source Code Disclosure

source: https://www.securityfocus.com/bid/14764/info Microsoft IIS is reportedly affected by a remote script source disclosure vulnerability. A successful attack causes the Web server to present the requested file as a plain text file and subsequently disclosing the source. It should be noted tha...

CVE-2001-1186

Microsoft IIS 5.0 allows remote attackers to cause a denial of service via an HTTP request with a content-length value that is larger than the size of the request, which prevents IIS from timing out the connection...

Microsoft IIS 5.0 < 5.1 - Remote Denial of Service

/ Microsoft IIS versions 5.0 and 5.1 remote denial of service exploit that makes use of the vulnerability recently published by SPI dynamics Published on 31.05.2003 / include include include pragma comment lib,"ws232" void graphitte printf"\n "; printf"\n Webdav MICROSOFT IIS DoS Exploit \n";...

ISS Security Brief: Microsoft IIS WebDAV Remote Compromise Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Internet Security Systems Security Brief March 17, 2003 Microsoft IIS WebDAV Remote Compromise Vulnerability Synopsis: A serious vulnerability exists within the WebDAV component of Microsoft Internet Information Services IIS Web server. WebDAV stands for...

Microsoft IIS 4.05.0 - SMTP Service Encapsulated SMTP Address (MS99-027)

Microsoft IIS 4.05.0 - SMTP Service Encapsulated SMTP Address MS99-027 source: https://www.securityfocus.com/bid/5213/info Microsoft Exchange 5.5 and the SMTP Simple Mail Transfer Protocol service included with IIS Internet Information Services 4.0 and 5.0 are vulnerable to an encapsulated SMTP...

Microsoft IIS 4.05.0 - Chunked Encoding Transfer Heap Overflow (4)

Microsoft IIS 4.05.0 - Chunked Encoding Transfer Heap Overflow 4 / source: https://www.securityfocus.com/bid/4485/info A heap overflow condition in the 'chunked encoding transfer mechanism' related to Active Server Pages has been reported for Microsoft IIS Internet Information Services. This...

Web Server HTTP Header Internal IP Disclosure

This may expose internal IP addresses that are usually hidden or masked behind a Network Address Translation NAT Firewall or proxy server. There is a known issue with Microsoft IIS 4.0 doing this in its default configuration. This may also affect other web servers, web applications, web proxies,...

Microsoft IIS 4.0/5.0 - SSI Buffer Overrun Privilege Escalation

// source: https://www.securityfocus.com/bid/3190/info A vulnerability exists in Microsoft IIS 4.0 and 5.0 that could allow a user with permission to write content to the IIS server to run any code in Local System context. / jim.c - IIS Server Side Include exploit by Indigo 2001 Usage: jim This...

Microsoft IIS 4.05.06.0 - Internal IP AddressInternal Network Name Disclosure

Microsoft IIS 4.05.06.0 - Internal IP AddressInternal Network Name Disclosure source: https://www.securityfocus.com/bid/3159/info A vulnerability has been discovered in Microsoft IIS that may disclose the internal IP address or internal network name to remote attackers. This vulnerability can be...

Microsoft IIS 4.0/5.0/6.0 - Internal IP Address/Internal Network Name Disclosure

source: https://www.securityfocus.com/bid/3159/info A vulnerability has been discovered in Microsoft IIS that may disclose the internal IP address or internal network name to remote attackers. This vulnerability can be exploited if an attacker connects to a host using HTTPS typically on port 443...

Microsoft IIS 4.0/5.0 - Device File Local Denial of Service

source: https://www.securityfocus.com/bid/2973/info Microsoft IIS is prone to denial of service attacks by local users. This issue is exploitable if the local attacker can create an .asp file which makes calls to various devices names. The local attacker must of course possess the privileges...

Advisory CA-2001-12

-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2001-12 Superfluous Decoding Vulnerability in IIS Original release date: May 15, 2001 Last revised: -- Source: CERT/CC A complete revision history is at the end of this file. Systems Affected Systems running Microsoft IIS Overview A serious...

Microsoft IIS 5.0 - '.printer' ISAPI Extension Buffer Overflow (4)

source: https://www.securityfocus.com/bid/2674/info Windows 2000 Internet printing ISAPI extension contains msw3prt.dll which handles user requests. Due to an unchecked buffer in msw3prt.dll, a maliciously crafted HTTP .printer request containing approx 420 bytes in the 'Host:' field will allow t...

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal (4)

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal 4 source: https://www.securityfocus.com/bid/1806/info Microsoft IIS 4.0 and 5.0 are both vulnerable to double dot "../" directory traversal exploitation if extended UNICODE character representations are used in substitution for "...

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal (5)

Microsoft IIS 4.05.0 and PWS - Extended Unicode Directory Traversal 5 source: https://www.securityfocus.com/bid/1806/info Microsoft IIS 4.0 and 5.0 are both vulnerable to double dot "../" directory traversal exploitation if extended UNICODE character representations are used in substitution for "...

Microsoft IIS 4.0/5.0 and PWS - Extended Unicode Directory Traversal (5)

source: https://www.securityfocus.com/bid/1806/info Microsoft IIS 4.0 and 5.0 are both vulnerable to double dot "../" directory traversal exploitation if extended UNICODE character representations are used in substitution for "/" and "". Unauthenticated users may access any known file in the...

Microsoft IIS 4.0/5.0 and PWS - Extended Unicode Directory Traversal (4)

source: https://www.securityfocus.com/bid/1806/info Microsoft IIS 4.0 and 5.0 are both vulnerable to double dot "../" directory traversal exploitation if extended UNICODE character representations are used in substitution for "/" and "". Unauthenticated users may access any known file in the...