Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft indexing service vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2000-1105
The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows 2000 systems that have Indexing Services enabled.
Microsoft Indexing Service
1 EDB exploit
515
VMScore
CVE-2000-0942
The CiWebHitsFile component in Microsoft Indexing Services for Windows 2000 allows remote malicious users to conduct a cross site scripting (CSS) attack via a CiRestriction parameter in a .htw request, aka the "Indexing Services Cross Site Scripting" vulnerability.
Microsoft Indexing Service
1 EDB exploit
445
VMScore
CVE-2001-0245
Microsoft Index Server 2.0 in Windows NT 4.0, and Indexing Service in Windows 2000, allows remote malicious users to read server-side include files via a malformed search request, aka a new variant of the "Malformed Hit-Highlighting" vulnerability.
Microsoft Index Server 2.0
Microsoft Indexing Service
1000
VMScore
CVE-2001-0500
Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and previous versions allows remote malicious users to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) f...
Microsoft Internet Information Server
Microsoft Index Server 2.0
Microsoft Indexing Service
5 EDB exploits
1 Github repository
435
VMScore
CVE-2006-0032
Cross-site scripting (XSS) vulnerability in the Indexing Service in Microsoft Windows 2000, XP, and Server 2003, when the Encoding option is set to Auto Select, allows remote malicious users to inject arbitrary web script or HTML via a UTF-7 encoded URL, which is injected into an...
Microsoft Windows 2003 Server Datacenter Edition
Microsoft Windows 2003 Server Enterprise Edition Itanium
Microsoft Windows 2003 Server Standard 64-bit
Microsoft Windows 2003 Server Web
Microsoft Windows Xp
Microsoft Windows 2000
Microsoft Windows 2003 Server Datacenter Edition Itanium
Microsoft Windows 2003 Server R2
Microsoft Windows 2003 Server Enterprise 64-bit
Microsoft Windows 2003 Server Sp1
Microsoft Windows 2003 Server Standard
Microsoft Windows 2000 Resource Kit
Microsoft Windows 2003 Server Enterprise Edition
1 EDB exploit
890
VMScore
CVE-2004-0897
The Indexing Service for Microsoft Windows XP and Server 2003 does not properly validate the length of a message, which allows remote malicious users to execute arbitrary code via a buffer overflow attack.
Microsoft Windows 2003 Server R2
Microsoft Windows Xp
505
VMScore
CVE-2000-0097
The WebHits ISAPI filter in Microsoft Index Server allows remote malicious users to read arbitrary files, aka the "Malformed Hit-Highlighting Argument" vulnerability.
Microsoft Index Server 2.0
1 EDB exploit
632
VMScore
CVE-2011-2004
Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 allows remote malicious users to cause a denial of service (reboot) via a crafted TrueType font file, aka "TrueType Font Parsing Vulnerability...
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
828
VMScore
CVE-2009-2507
A certain ActiveX control in the Indexing Service in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly process URLs, which allows remote malicious users to execute arbitrary programs via unspecified vectors that cause a "vulnerable binary"...
Microsoft Windows 2003 Server
Microsoft Windows 2000
Microsoft Windows Xp -
Microsoft Windows Xp
692
VMScore
CVE-2022-1388
On F5 BIG-IP 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all 12.1.x and 11.6.x versions, undisclosed requests may bypass iControl REST authentication. Note: Software versions which have reac...
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Analytics
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Security Manager
F5 Big-ip Domain Name System
F5 Big-ip Fraud Protection Service
F5 Big-ip Global Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Local Traffic Manager
F5 Big-ip Policy Enforcement Manager
82 Github repositories
4 Articles
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »