Lucene search

K
MicrosoftInternet Information Services

91 matches found

CVE
CVE
added 2014/11/11 10:55 p.m.5028 views

CVE-2014-4078

The IP Security feature in Microsoft Internet Information Services (IIS) 8.0 and 8.5 does not properly process wildcard allow and deny rules for domains within the "IP Address and Domain Restrictions" list, which makes it easier for remote attackers to bypass an intended rule set via an HTTP reques...

5.1CVSS7.3AI score0.15547EPSS
CVE
CVE
added 2010/12/23 6:0 p.m.3678 views

CVE-2010-3972

Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) 7.0, and IIS 7.5, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted FTP c...

10CVSS8.2AI score0.91689EPSS
CVE
CVE
added 2010/09/15 7:0 p.m.1929 views

CVE-2010-2730

Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability."

9.3CVSS7.7AI score0.10296EPSS
CVE
CVE
added 2008/09/29 5:17 p.m.1668 views

CVE-2008-4301

A certain ActiveX control in iisext.dll in Microsoft Internet Information Services (IIS) allows remote attackers to set a password via a string argument to the SetPassword method. NOTE: this issue could not be reproduced by a reliable third party. In addition, the original researcher is unreliable....

10CVSS6.6AI score0.31087EPSS
CVE
CVE
added 2017/03/27 2:59 a.m.1602 views

CVE-2017-7269

Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request, as exploited in the w...

10CVSS8.9AI score0.94358EPSS
CVE
CVE
added 2008/10/15 12:12 a.m.1117 views

CVE-2008-1446

Integer overflow in the Internet Printing Protocol (IPP) ISAPI extension in Microsoft Internet Information Services (IIS) 5.0 through 7.0 on Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, and Server 2008 allows remote authenticated users to execute arbitrary code via an HTTP POST reques...

9CVSS7.3AI score0.67001EPSS
CVE
CVE
added 2010/09/15 7:0 p.m.1019 views

CVE-2010-1899

Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) via a crafted request, related to asp.dll, aka "IIS Repeated Parameter Request Denial of Service Vul...

4.3CVSS6.4AI score0.87011EPSS
CVE
CVE
added 2008/09/29 5:17 p.m.511 views

CVE-2008-4300

A certain ActiveX control in adsiis.dll in Microsoft Internet Information Services (IIS) allows remote attackers to cause a denial of service (browser crash) via a long string in the second argument to the GetObject method. NOTE: this issue was disclosed by an unreliable researcher, so it might be ...

5CVSS6.5AI score0.14381EPSS
CVE
CVE
added 2009/09/04 10:30 a.m.421 views

CVE-2009-2521

Stack consumption vulnerability in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows remote authenticated users to cause a denial of service (daemon crash) via a list (ls) -R command containing a wildcard that references a subdirectory, followed by a .. (dot do...

5CVSS6.1AI score0.60775EPSS
CVE
CVE
added 2000/08/03 4:0 a.m.419 views

CVE-2000-0649

IIS 4.0 allows remote attackers to obtain the internal IP address of the server via an HTTP 1.0 request for a web page which is protected by basic authentication and has no realm defined.

2.6CVSS6.9AI score0.62025EPSS
CVE
CVE
added 2009/12/29 9:0 p.m.379 views

CVE-2009-4445

Microsoft Internet Information Services (IIS), when used in conjunction with unspecified third-party upload applications, allows remote attackers to create empty files with arbitrary extensions via a filename containing an initial extension followed by a : (colon) and a safe extension, as demonstra...

6CVSS6.8AI score0.10061EPSS
CVE
CVE
added 2009/06/10 2:30 p.m.377 views

CVE-2009-1535

The WebDAV extension in Microsoft Internet Information Services (IIS) 5.1 and 6.0 allows remote attackers to bypass URI-based protection mechanisms, and list folders or read, create, or modify files, via a %c0%af (Unicode / character) at an arbitrary position in the URI, as demonstrated by insertin...

7.5CVSS6.7AI score0.92339EPSS
CVE
CVE
added 2009/01/15 12:30 a.m.336 views

CVE-2003-1567

The undocumented TRACK method in Microsoft Internet Information Services (IIS) 5.0 returns the content of the original request in the body of the response, which makes it easier for remote attackers to steal cookies and authentication credentials, or bypass the HttpOnly protection mechanism, by usi...

5.8CVSS6.1AI score0.79926EPSS
CVE
CVE
added 2009/12/29 9:0 p.m.310 views

CVE-2009-4444

Microsoft Internet Information Services (IIS) 5.x and 6.x uses only the portion of a filename before a ; (semicolon) character to determine the file extension, which allows remote attackers to bypass intended extension restrictions of third-party upload applications via a filename with a (1) .asp, ...

6CVSS6.6AI score0.58584EPSS
CVE
CVE
added 2008/02/12 9:0 p.m.196 views

CVE-2008-0074

Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot, NNTPFile\Root, or WWWRoot folders.

7.2CVSS6.2AI score0.02029EPSS
CVE
CVE
added 2009/06/10 6:30 p.m.177 views

CVE-2009-1122

The WebDAV extension in Microsoft Internet Information Services (IIS) 5.0 on Windows 2000 SP4 does not properly decode URLs, which allows remote attackers to bypass authentication, and possibly read or create files, via a crafted HTTP request, aka "IIS 5.0 WebDAV Authentication Bypass Vulnerability...

7.5CVSS6.4AI score0.92339EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.160 views

CVE-2000-0884

IIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root, and possibly execute arbitrary commands, via malformed URLs that contain UNICODE encoded characters, aka the "Web Server Folder Traversal" vulnerability.

7.5CVSS7AI score0.86685EPSS
CVE
CVE
added 2002/08/12 4:0 a.m.150 views

CVE-2002-0422

IIS 5 and 5.1 supporting WebDAV methods allows remote attackers to determine the internal IP address of the system (which may be obscured by NAT) via (1) a PROPFIND HTTP request with a blank Host header, which leaks the address in an HREF property in a 207 Multi-Status response, or (2) via the WRIT...

2.6CVSS9.4AI score0.49978EPSS
CVE
CVE
added 2005/07/05 4:0 a.m.150 views

CVE-2005-2089

Microsoft IIS 5.0 and 6.0 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes IIS to incorrectly handle and forward the body...

4.3CVSS6.3AI score0.54337EPSS
CVE
CVE
added 2005/06/21 4:0 a.m.129 views

CVE-2002-1717

Microsoft Internet Information Server (IIS) 5.1 allows remote attackers to view path information via a GET request to (1) /_vti_pvt/access.cnf, (2) /_vti_pvt/botinfs.cnf, (3) /_vti_pvt/bots.cnf, or (4) /_vti_pvt/linkinfo.cnf.

5CVSS6.3AI score0.15025EPSS
CVE
CVE
added 2005/08/23 4:0 a.m.129 views

CVE-2005-2678

Microsoft IIS 5.1 and 6 allows remote attackers to spoof the SERVER_NAME variable to bypass security checks and conduct various attacks via a GET request with an http://localhost URI, which makes it appear as if the request is coming from localhost.

5CVSS6.6AI score0.55449EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.128 views

CVE-1999-0450

In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe).

7.5CVSS6.6AI score0.32431EPSS
CVE
CVE
added 2002/08/12 4:0 a.m.127 views

CVE-2002-0419

Information leaks in IIS 4 through 5.1 allow remote attackers to obtain potentially sensitive information or more easily conduct brute force attacks via responses from the server in which (2) in certain configurations, the server IP address is provided as the realm for Basic authentication, which c...

5CVSS6.5AI score0.31296EPSS
CVE
CVE
added 2000/06/15 4:0 a.m.125 views

CVE-2000-0413

The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers to determine the physical path of HTML, HTM, ASP, and SHTML files by requesting a file that does not exist, which generates an error message that reveals the path.

5CVSS6.4AI score0.59392EPSS
CVE
CVE
added 2007/05/22 7:30 p.m.112 views

CVE-2007-2815

The "hit-highlighting" functionality in webhits.dll in Microsoft Internet Information Services (IIS) Web Server 5.0 only uses Windows NT ACL configuration, which allows remote attackers to bypass NTLM and basic authentication mechanisms and access private web directories via the CiWebhitsfile param...

10CVSS6.6AI score0.85071EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.104 views

CVE-2002-0075

Cross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other web users via the error message used in a URL redirect (""302 Object Moved") message.

7.5CVSS6.9AI score0.67563EPSS
CVE
CVE
added 2006/07/11 10:5 p.m.103 views

CVE-2006-0026

Buffer overflow in Microsoft Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows local and possibly remote attackers to execute arbitrary code via crafted Active Server Pages (ASP).

6.5CVSS7.6AI score0.90121EPSS
CVE
CVE
added 2014/04/23 8:55 p.m.101 views

CVE-2011-5279

CRLF injection vulnerability in the CGI implementation in Microsoft Internet Information Services (IIS) 4.x and 5.x on Windows NT and Windows 2000 allows remote attackers to modify arbitrary uppercase environment variables via a \n (newline) character in an HTTP header.

5CVSS7.1AI score0.08547EPSS
CVE
CVE
added 2006/12/15 7:28 p.m.97 views

CVE-2006-6578

Microsoft Internet Information Services (IIS) 5.1 permits the IUSR_Machine account to execute non-EXE files such as .COM files, which allows attackers to execute arbitrary commands via arguments to any .COM file that executes those arguments, as demonstrated using win.com when it is in a web direct...

7.5CVSS7.7AI score0.01374EPSS
CVE
CVE
added 2004/11/03 5:0 a.m.88 views

CVE-2003-0718

The WebDAV Message Handler for Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows remote attackers to cause a denial of service (memory and CPU exhaustion, application crash) via a PROPFIND request with an XML message containing XML elements with a large number of attributes.

5CVSS6.7AI score0.81995EPSS
CVE
CVE
added 2005/06/21 4:0 a.m.83 views

CVE-2002-1718

Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. (dot dot) sequences.

5CVSS7AI score0.25288EPSS
CVE
CVE
added 2000/06/02 4:0 a.m.74 views

CVE-2000-0246

IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.

5CVSS6.8AI score0.83616EPSS
CVE
CVE
added 2006/12/15 7:28 p.m.74 views

CVE-2006-6579

Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine...

4.4CVSS6.5AI score0.00182EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.72 views

CVE-2000-0071

IIS 4.0 allows a remote attacker to obtain the real pathname of the document root by requesting non-existent files with .ida or .idq extensions.

5CVSS6.4AI score0.7142EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.70 views

CVE-2002-0364

Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows attackers to execute arbitrary code via the processing of HTR request sessions, aka "Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise."

7.5CVSS7.6AI score0.65661EPSS
CVE
CVE
added 2001/06/02 4:0 a.m.68 views

CVE-2001-0151

IIS 5.0 allows remote attackers to cause a denial of service via a series of malformed WebDAV requests.

5CVSS6.5AI score0.84832EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.67 views

CVE-2000-0970

IIS 4.0 and 5.0 .ASP pages send the same Session ID cookie for secure and insecure web sessions, which could allow remote attackers to hijack the secure web session of the user if that user moves to an insecure session, aka the "Session ID Cookie Marking" vulnerability.

7.5CVSS7.1AI score0.3846EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.67 views

CVE-2002-0148

Cross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other users via an HTTP error page.

7.5CVSS6.8AI score0.72471EPSS
CVE
CVE
added 2005/12/20 1:3 a.m.67 views

CVE-2005-4360

The URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional SP2 allows remote attackers to execute arbitrary code via multiple requests to ".dll" followed by arguments such as "~0" through "~9", which causes ntdll.dll to produce a return value that is not correctl...

7.8CVSS7.7AI score0.76038EPSS
CVE
CVE
added 2003/04/02 5:0 a.m.66 views

CVE-2002-0149

Buffer overflow in ASP Server-Side Include Function in IIS 4.0, 5.0 and 5.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via long file names.

7.5CVSS7.8AI score0.49796EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.66 views

CVE-2002-1180

A typographical error in the script source access permissions for Internet Information Server (IIS) 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access Vulnerability."

7.5CVSS6.5AI score0.01617EPSS
CVE
CVE
added 2000/02/04 5:0 a.m.65 views

CVE-1999-0253

IIS 3.0 with the iis-fix hotfix installed allows remote intruders to read source code for ASP programs by using a %2e instead of a . (dot) in the URL.

7.5CVSS6.9AI score0.02987EPSS
CVE
CVE
added 2001/01/22 5:0 a.m.65 views

CVE-2000-0886

IIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executable file whose name is appended with operating system commands, aka the "Web Server File Request Parsing" vulnerability.

7.5CVSS7.6AI score0.89218EPSS
CVE
CVE
added 2003/06/09 4:0 a.m.65 views

CVE-2003-0224

Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overrun."

10CVSS7.4AI score0.13411EPSS
CVE
CVE
added 2001/01/09 5:0 a.m.64 views

CVE-2000-1104

Variant of the "IIS Cross-Site Scripting" vulnerability as originally discussed in MS:MS00-060 (CVE-2000-0746) allows a malicious web site operator to embed scripts in a link to a trusted site, which are returned without quoting in an error message back to the client. The client then executes those...

7.5CVSS6.3AI score0.18278EPSS
CVE
CVE
added 2003/06/09 4:0 a.m.63 views

CVE-2003-0226

Microsoft Internet Information Services (IIS) 5.0 and 5.1 allows remote attackers to cause a denial of service via a long WebDAV request with a (1) PROPFIND or (2) SEARCH method, which generates an error condition that is not properly handled.

5CVSS6.6AI score0.53051EPSS
CVE
CVE
added 2000/07/12 4:0 a.m.62 views

CVE-2000-0408

IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulnerability.

5CVSS6.8AI score0.74022EPSS
CVE
CVE
added 2002/11/12 5:0 a.m.62 views

CVE-2002-1181

Multiple cross-site scripting (XSS) vulnerabilities in the administrative web pages for Microsoft Internet Information Server (IIS) 4.0 through 5.1 allow remote attackers to execute HTML script as other users through (1) a certain ASP file in the IISHELP virtual directory, or (2) possibly other unk...

6.8CVSS6AI score0.10885EPSS
CVE
CVE
added 1999/09/29 4:0 a.m.61 views

CVE-1999-0412

In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension.

7.5CVSS7.2AI score0.38326EPSS
CVE
CVE
added 2000/10/20 4:0 a.m.61 views

CVE-2000-0746

Vulnerabilities in IIS 4.0 and 5.0 do not properly protect against cross-site scripting (CSS) attacks. They allow a malicious web site operator to embed scripts in a link to a trusted site, which are returned without quoting in an error message back to the client. The client then executes those scr...

7.5CVSS6AI score0.18278EPSS
Total number of security vulnerabilities91