Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
internet information services vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-1999-0233
IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files.
Microsoft Internet Information Services 1.0
1 EDB exploit
445
VMScore
CVE-2002-1908
Microsoft IIS 5.0 and 5.1 allows remote malicious users to cause a denial of service (CPU consumption) via an HTTP request with a Host header that contains a large number of "/" (forward slash) characters.
Microsoft Internet Information Services 5.0
505
VMScore
CVE-2001-1186
Microsoft IIS 5.0 allows remote malicious users to cause a denial of service via an HTTP request with a content-length value that is larger than the size of the request, which prevents IIS from timing out the connection.
Microsoft Internet Information Services 5.0
1 EDB exploit
668
VMScore
CVE-2002-1180
A typographical error in the script source access permissions for Internet Information Server (IIS) 5.0 does not properly exclude .COM files, which allows attackers with only write permissions to upload malicious .COM files, aka "Script Source Access Vulnerability."
Microsoft Internet Information Services 5.0
445
VMScore
CVE-2002-1182
IIS 5.0 and 5.1 allows remote malicious users to cause a denial of service (crash) via malformed WebDAV requests that cause a large amount of memory to be assigned.
Microsoft Internet Information Services 5.0
505
VMScore
CVE-2000-0951
A misconfiguration in IIS 5.0 with Index Server enabled and the Index property set allows remote malicious users to list directories in the web root via a Web Distributed Authoring and Versioning (WebDAV) search.
Microsoft Internet Information Services 5.0
1 EDB exploit
445
VMScore
CVE-2002-1718
Microsoft Internet Information Server (IIS) 5.1 may allow remote malicious users to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. (dot dot) sequences.
Microsoft Internet Information Services 5.1
445
VMScore
CVE-2002-1745
Off-by-one error in the CodeBrws.asp sample script in Microsoft IIS 5.0 allows remote malicious users to view the source code for files with extensions containing with one additional character after .html, .htm, .asp, or .inc, such as .aspx files.
Microsoft Internet Information Services 5.0
505
VMScore
CVE-2002-1790
The SMTP service in Microsoft Internet Information Services (IIS) 4.0 and 5.0 allows remote malicious users to bypass anti-relaying rules and send spam or spoofed messages via encapsulated SMTP addresses, a similar vulnerability to CVE-1999-0682.
Microsoft Exchange Server 5.5
Microsoft Internet Information Server 4.0
Microsoft Internet Information Services 5.0
1 EDB exploit
445
VMScore
CVE-2001-0146
IIS 5.0 and Microsoft Exchange 2000 allow remote malicious users to cause a denial of service (memory allocation error) by repeatedly sending a series of specially formatted URL's.
Microsoft Exchange Server 2000
Microsoft Internet Information Services 5.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »