Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
iis vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2004-1312
A bug in the HTML parser in a certain Microsoft HTML library, as used in various third party products, may allow remote malicious users to cause a denial of service via certain strings, as reported in GFI MailEssentials for Exchange 9 and 10, and GFI MailSecurity for Exchange 8, ...
Gfi Mailessentials 10.0
Gfi Mailessentials 10.1
Gfi Mailessentials 9.0
Gfi Mailsecurity 8.0
10
CVSSv2
CVE-2004-0574
The Network News Transfer Protocol (NNTP) component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote malicious users to execute arbitrary code via XPAT patterns, possibly related to improper...
Microsoft Exchange Server 2000
Microsoft Exchange Server 2003
Microsoft Windows 2000 -
Microsoft Windows Nt 4.0
Microsoft Windows Server 2003 R2
1 EDB exploit
10
CVSSv2
CVE-2003-0224
Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overrun."
Microsoft Internet Information Services 5.0
10
CVSSv2
CVE-2002-0801
Buffer overflow in the ISAPI DLL filter for Macromedia JRun 3.1 allows remote malicious users to execute arbitrary code via a direct request to the filter with a long HTTP host header field in a URL for a .jsp file.
Macromedia Jrun 3.0
Macromedia Jrun 3.1
10
CVSSv2
CVE-2001-0500
Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and previous versions allows remote malicious users to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) f...
Microsoft Internet Information Server
Microsoft Index Server 2.0
Microsoft Indexing Service
5 EDB exploits
1 Github repository
10
CVSSv2
CVE-2001-0241
Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote malicious users to gain root privileges via a long print request that is passed to the extension through IIS 5.0.
Microsoft Windows 2000
7 EDB exploits
10
CVSSv2
CVE-2000-1089
Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer Overflow" vulnerability.
Microsoft Windows 2000
Microsoft Windows Nt 4.0
2 EDB exploits
10
CVSSv2
CVE-1999-1011
The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote malicious users to execute arbitrary commands.
Microsoft Index Server 2.0
Microsoft Internet Information Server 3.0
Microsoft Data Access Components 2.0
Microsoft Data Access Components 2.1
Microsoft Data Access Components 1.5
Microsoft Internet Information Server 4.0
Microsoft Site Server 3.0
2 EDB exploits
1 Article
10
CVSSv2
CVE-1999-0874
Buffer overflow in IIS 4.0 allows remote malicious users to cause a denial of service via a malformed request for files with .HTR, .IDC, or .STM extensions.
Microsoft Internet Information Server 4.0
Microsoft Windows Nt 4.0
Microsoft Windows Nt
Microsoft Windows 2000
5 EDB exploits
10
CVSSv2
CVE-1999-0407
By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.
Microsoft Internet Information Server 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »