Lucene search
K

5 matches found

NVD
NVD
added 2005/01/10 5:0 a.m.19 views

CVE-2004-1133

Multiple cross-site scripting XSS vulnerabilities in Microsoft W3Who ISAPI w3who.dll allow remote attackers to inject arbitrary HTML and web script via 1 HTTP headers such as "Connection" or 2 invalid parameters whose values are echoed in the resulting error message...

6.8CVSS5.8AI score0.09812EPSS
Exploits0References3
NVD
NVD
added 2005/01/10 5:0 a.m.33 views

CVE-2004-1134

Buffer overflow in the Microsoft W3Who ISAPI w3who.dll allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long query string...

10CVSS7.8AI score0.72326EPSS
Exploits5References3
Cvelist
Cvelist
added 2004/12/08 5:0 a.m.27 views

CVE-2004-1133

Multiple cross-site scripting XSS vulnerabilities in Microsoft W3Who ISAPI w3who.dll allow remote attackers to inject arbitrary HTML and web script via 1 HTTP headers such as "Connection" or 2 invalid parameters whose values are echoed in the resulting error message...

5.7AI score0.09812EPSS
Exploits0References3
Cvelist
Cvelist
added 2004/12/08 5:0 a.m.37 views

CVE-2004-1134

Buffer overflow in the Microsoft W3Who ISAPI w3who.dll allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long query string...

7.8AI score0.72326EPSS
Exploits5References3
CVE
CVE
added 2004/12/08 5:0 a.m.63 views

CVE-2004-1134

CVE-2004-1134 covers a stack/ buffer overflow in the Microsoft IIS ISAPI w3who.dll (W3Who) triggered by long query strings. The root cause is lack of input sanitization for CGI variables, enabling remote attackers to cause denial of service and potentially execute arbitrary code with IIS privileg...

10CVSS7.7AI score0.72326EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder