Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft internet information server vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-1999-0191
IIS newdsn.exe CGI script allows remote users to overwrite files.
Microsoft Internet Information Server 3.0
1 EDB exploit
7.8
CVSSv2
CVE-1999-0449
The ExAir sample site in IIS 4 allows remote malicious users to cause a denial of service (CPU consumption) via a direct request to the (1) advsearch.asp, (2) query.asp, or (3) search.asp scripts.
Microsoft Internet Information Server 4.0
10
CVSSv2
CVE-1999-1376
Buffer overflow in fpcount.exe in IIS 4.0 with FrontPage Server Extensions allows remote malicious users to execute arbitrary commands.
Microsoft Internet Information Server 4.0
1 Github repository
10
CVSSv2
CVE-1999-0407
By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.
Microsoft Internet Information Server 4.0
5
CVSSv2
CVE-1999-0737
The viewcode.asp sample file in IIS and Site Server allows remote malicious users to read arbitrary files.
Microsoft Internet Information Server 4.0
5
CVSSv2
CVE-1999-0738
The code.asp sample file in IIS and Site Server allows remote malicious users to read arbitrary files.
Microsoft Internet Information Server 4.0
5
CVSSv2
CVE-1999-0739
The codebrws.asp sample file in IIS and Site Server allows remote malicious users to read arbitrary files.
Microsoft Internet Information Server 4.0
4.6
CVSSv2
CVE-2000-1147
Buffer overflow in IIS ISAPI .ASP parsing mechanism allows malicious users to execute arbitrary commands via a long string to the "LANGUAGE" argument in a script tag.
Microsoft Internet Information Server 4.0
1 EDB exploit
5
CVSSv2
CVE-1999-0448
IIS 4.0 and Apache log HTTP request methods, regardless of how long they are, allowing a remote malicious user to hide the URL they really request.
Microsoft Internet Information Server 4.0
1 EDB exploit
2.1
CVSSv2
CVE-2000-0167
IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup directory.
Microsoft Internet Information Server 4.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »