Lucene search

K
MicrosoftInternet Information Services5.1

5 matches found

CVE
CVE
added 2009/06/10 2:30 p.m.377 views

CVE-2009-1535

The WebDAV extension in Microsoft Internet Information Services (IIS) 5.1 and 6.0 allows remote attackers to bypass URI-based protection mechanisms, and list folders or read, create, or modify files, via a %c0%af (Unicode / character) at an arbitrary position in the URI, as demonstrated by insertin...

7.5CVSS6.7AI score0.92339EPSS
CVE
CVE
added 2005/06/21 4:0 a.m.129 views

CVE-2002-1717

Microsoft Internet Information Server (IIS) 5.1 allows remote attackers to view path information via a GET request to (1) /_vti_pvt/access.cnf, (2) /_vti_pvt/botinfs.cnf, (3) /_vti_pvt/bots.cnf, or (4) /_vti_pvt/linkinfo.cnf.

5CVSS6.3AI score0.15025EPSS
CVE
CVE
added 2006/12/15 7:28 p.m.97 views

CVE-2006-6578

Microsoft Internet Information Services (IIS) 5.1 permits the IUSR_Machine account to execute non-EXE files such as .COM files, which allows attackers to execute arbitrary commands via arguments to any .COM file that executes those arguments, as demonstrated using win.com when it is in a web direct...

7.5CVSS7.7AI score0.01374EPSS
CVE
CVE
added 2005/06/21 4:0 a.m.83 views

CVE-2002-1718

Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. (dot dot) sequences.

5CVSS7AI score0.25288EPSS
CVE
CVE
added 2005/12/20 1:3 a.m.67 views

CVE-2005-4360

The URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional SP2 allows remote attackers to execute arbitrary code via multiple requests to ".dll" followed by arguments such as "~0" through "~9", which causes ntdll.dll to produce a return value that is not correctl...

7.8CVSS7.7AI score0.76038EPSS