Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft commerce server 2000 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-0623
Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002 allows remote malicious users to execute arbitrary code via long authentication data, aka "New Variant of the ISAPI Filter Buffer Overrun".
Microsoft Commerce Server 2002
Microsoft Commerce Server 2000
5
CVSSv2
CVE-2002-0621
Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Server 2000 allows remote malicious users to cause the process to fail or run arbitrary code in the LocalSystem security context via certain input to the OWC package installer.
Microsoft Commerce Server 2000
7.5
CVSSv2
CVE-2002-0050
Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 allows remote malicious users to execute arbitrary code via long authentication data.
Microsoft Commerce Server 2000
5
CVSSv2
CVE-2002-0620
Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote malicious users to cause the server to fail or run arbitrary code in the LocalSystem security context via an input field using an affected API.
Microsoft Commerce Server 2000
7.5
CVSSv2
CVE-2002-0622
The Office Web Components (OWC) package installer for Microsoft Commerce Server 2000 allows remote malicious users to execute commands by passing the commands as input to the OWC package installer, aka "OWC Package Command Execution".
Microsoft Commerce Server 2000
6.4
CVSSv2
CVE-2000-0024
IIS does not properly canonicalize URLs, potentially allowing remote malicious users to bypass access restrictions in third-party software via escape characters, aka the "Escape Character Parsing" vulnerability.
Microsoft Site Server 3.0
Microsoft Internet Information Server 4.0
Microsoft Site Server Commerce 3.0
5
CVSSv2
CVE-2000-0025
IIS 4.0 and Site Server 3.0 allow remote malicious users to read source code for ASP files if the file is in a virtual directory whose name includes extensions such as .com, .exe, .sh, .cgi, or .dll, aka the "Virtual Directory Naming" vulnerability.
Microsoft Site Server 3.0
Microsoft Internet Information Server 4.0
Microsoft Site Server Commerce 3.0
9.3
CVSSv2
CVE-2007-1201
Unspecified vulnerability in certain COM objects in Microsoft Office Web Components 2000 allows user-assisted remote malicious users to execute arbitrary code via vectors related to DataSource that trigger memory corruption, aka "Office Web Components DataSource Vulnerabilit...
Microsoft Biztalk Server 2000
Microsoft Biztalk Server 2002
Microsoft Office 2000
Microsoft Office Xp
Microsoft Visual Studio .net 2002
Microsoft Visual Studio .net 2003
Microsoft Commerce Server 2000
Microsoft Internet Security And Acceleration Server 2000
5
CVSSv2
CVE-2000-0246
IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote malicious users to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.
Microsoft Commercial Internet System 2.5
Microsoft Internet Information Server 4.0
Microsoft Site Server Commerce 3.0
Microsoft Internet Information Services 5.0
Microsoft Proxy Server 2.0
Microsoft Site Server 3.0
Microsoft Commercial Internet System 2.0
1 EDB exploit
9.3
CVSSv2
CVE-2012-0158
The (1) ListView, (2) ListView2, (3) TreeView, and (4) TreeView2 ActiveX controls in MSCOMCTL.OCX in the Common Controls in Microsoft Office 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2003 Web Components SP3; SQL Server 2000 SP4, 2005 SP4, and 2008 SP2, SP3, and R2...
Microsoft Office 2010
Microsoft Office 2003
Microsoft Office Web Components 2003
Microsoft Office 2007
Microsoft Sql Server 2000
Microsoft Sql Server 2008
Microsoft Sql Server 2005
Microsoft Biztalk Server 2002
Microsoft Commerce Server 2002
Microsoft Commerce Server 2007
Microsoft Commerce Server 2009
Microsoft Visual Foxpro 8.0
Microsoft Visual Foxpro 9.0
Microsoft Visual Basic 6.0
1 EDB exploit
8 Github repositories
44 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »