32 matches found
EUVD-2004-0205
Malware in sbrugna...
EUVD-2002-1674
Malware in sbrugna...
EUVD-2003-0218
Malware in sbrugna...
EUVD-2024-16694
Malicious code in bioql PyPI...
CVE-2002-1718
Microsoft Internet Information Server IIS 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension FPSE file, as claimed using an HTTP request for colegal.htm that contains .. dot dot sequences...
Microsoft IIS 2.0/3.0 Long URL Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2654/info Microsoft Internet Information Server is vulnerable to a denial of service. This particular denial of service affects versions 2.0, 3.0 and 4.0 of the server prior to service pack 4. The URL which causes this...
Microsoft IIS 5.0 IDC Extension Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5900/info A vulnerability in Microsoft Internet Information Server IIS may make cross-site scripting attacks possible. When IIS receives a request for an .idc file, the server typically returns a 404 message when the page...
RSA Authentication Agent for Web Buffer Overflow (CVE-2005-1471)
The RSA Authentication Agent for Web for Internet Information Services IIS provides protection for selected web pages by securing them with the RSA SecurID authentication mechanism. When a user attempts to access a resource that is secured with the RSA SecurID, the RSA Agent authenticates the use...
Microsoft Internet Information Server 5.1 DLL请求拒绝服务漏洞
Microsoft Internet Information Server是一款流行的WEB服务程序。 Windows XP Professional Service Pack 2下的IIS 5.1处理畸形匿名HTTP请求存在问题,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 此问题只存在于文件夹中对脚本和可执行文件设置了执行权限的情况。提交包含"0", "1", "2", "3", "4", "5", "6", "7", "8", 或"9" 等字符的请求,可导致应用程序停止响应。 Microsoft Windows XP Tablet PC Edition SP2 Microso...
Cumulative Patch for Internet Information Services (Q327696)
Cumulative Patch for Microsoft IIS Q327696 Impact of vulnerability: Ten new vulnerabilities, the most serious of which could enable code of an attacker's choice to be run on a server. Recommendation: Users using any of the affected products should install the patch immediately. Maximum Severity...
CVE-2004-0205
Buffer overflow in Microsoft Internet Information Server IIS 4.0 allows local users to execute arbitrary code via the redirect function...
Microsoft Internet Information Server buffer overflow
Buffer overflow on oversized URL to redirected site...
CVE-2003-0223
Cross-site scripting vulnerability XSS in the ASP function responsible for redirection in Microsoft Internet Information Server IIS 4.0, 5.0, and 5.1 allows remote attackers to embed a URL containing script in a redirection message...
CVE-2003-0225
The ASP function Response.AddHeader in Microsoft Internet Information Server IIS 4.0 and 5.0 does not limit memory requests when constructing headers, which allow remote attackers to generate a large header to cause a denial of service memory consumption with an ASP page...
CVE-2003-0223
Cross-site scripting vulnerability XSS in the ASP function responsible for redirection in Microsoft Internet Information Server IIS 4.0, 5.0, and 5.1 allows remote attackers to embed a URL containing script in a redirection message...
CVE-2003-0225
The ASP function Response.AddHeader in Microsoft Internet Information Server IIS 4.0 and 5.0 does not limit memory requests when constructing headers, which allow remote attackers to generate a large header to cause a denial of service memory consumption with an ASP page...
CVE-2002-1718
Microsoft Internet Information Server IIS 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension FPSE file, as claimed using an HTTP request for colegal.htm that contains .. dot dot sequences...
CVE-2002-1717
Microsoft Internet Information Server IIS 5.1 allows remote attackers to view path information via a GET request to 1 /vtipvt/access.cnf, 2 /vtipvt/botinfs.cnf, 3 /vtipvt/bots.cnf, or 4 /vtipvt/linkinfo.cnf...
CVE-2002-0869
Unknown vulnerability in the hosting process dllhost.exe for Microsoft Internet Information Server IIS 4.0 through 5.1 allows remote attackers to gain privileges by executing an out of process application that acquires LocalSystem privileges, aka "Out of Process Privilege Elevation."...
CVE-2002-1181
Multiple cross-site scripting XSS vulnerabilities in the administrative web pages for Microsoft Internet Information Server IIS 4.0 through 5.1 allow remote attackers to execute HTML script as other users through 1 a certain ASP file in the IISHELP virtual directory, or 2 possibly other unknown...