Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
internet information server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0739
The codebrws.asp sample file in IIS and Site Server allows remote malicious users to read arbitrary files.
Microsoft Internet Information Server 4.0
NA
CVE-1999-0191
IIS newdsn.exe CGI script allows remote users to overwrite files.
Microsoft Internet Information Server 3.0
1 EDB exploit
NA
CVE-2001-0545
IIS 4.0 with URL redirection enabled allows remote malicious users to cause a denial of service (crash) via a malformed request that specifies a length that is different than the actual length.
Microsoft Internet Information Server 4.0
NA
CVE-1999-1376
Buffer overflow in fpcount.exe in IIS 4.0 with FrontPage Server Extensions allows remote malicious users to execute arbitrary commands.
Microsoft Internet Information Server 4.0
1 Github repository
NA
CVE-1999-1223
IIS 3.0 allows remote malicious users to cause a denial of service via a request to an ASP page in which the URL contains a large number of / (forward slash) characters.
Microsoft Internet Information Server 3.0
NA
CVE-1999-1233
IIS 4.0 does not properly restrict access for the initial session request from a user's IP address if the address does not resolve to a DNS domain, aka the "Domain Resolution" vulnerability.
Microsoft Internet Information Server 4.0
NA
CVE-2000-0167
IIS Inetinfo.exe allows local users to cause a denial of service by creating a mail file with a long name and a .txt.eml extension in the pickup directory.
Microsoft Internet Information Server 4.0
1 EDB exploit
NA
CVE-2000-0226
IIS 4.0 allows malicious users to cause a denial of service by requesting a large buffer in a POST or PUT command which consumes memory, aka the "Chunked Transfer Encoding Buffer Overflow Vulnerability."
Microsoft Internet Information Server 4.0
NA
CVE-1999-0736
The showcode.asp sample file in IIS and Site Server allows remote malicious users to read arbitrary files.
Microsoft Internet Information Server 4.0
1 EDB exploit
NA
CVE-1999-1538
When IIS 2 or 3 is upgraded to IIS 4, ism.dll is inadvertently left in /scripts/iisadmin, which does not restrict access to the local machine and allows an unauthorized user to gain access to sensitive server information, including the Administrator's password.
Microsoft Internet Information Server 4.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »