Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
iis vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1446
Integer overflow in the Internet Printing Protocol (IPP) ISAPI extension in Microsoft Internet Information Services (IIS) 5.0 up to and including 7.0 on Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, and Server 2008 allows remote authenticated users to execute arbitra...
Microsoft Internet Information Services
NA
CVE-2008-4301
A certain ActiveX control in iisext.dll in Microsoft Internet Information Services (IIS) allows remote malicious users to set a password via a string argument to the SetPassword method. NOTE: this issue could not be reproduced by a reliable third party. In addition, the original ...
Microsoft Internet Information Services -
NA
CVE-2008-4300
A certain ActiveX control in adsiis.dll in Microsoft Internet Information Services (IIS) allows remote malicious users to cause a denial of service (browser crash) via a long string in the second argument to the GetObject method. NOTE: this issue was disclosed by an unreliable re...
Microsoft Internet Information Services -
NA
CVE-2008-3697
An unspecified ISAPI extension in VMware Server prior to 1.0.7 build 108231 allows remote malicious users to cause a denial of service (IIS crash) via a malformed request.
Vmware Vmware Server 1.0.2
Vmware Vmware Server 1.0.4
Vmware Vmware Server 1.0.5
Vmware Vmware Server 1.0.0
Vmware Vmware Server 1.0.1
Vmware Server 1.0.1 Build 29996
Vmware Server 1.0.3
Vmware Vmware Server
Vmware Server 1.0.4 Build 56528
Vmware Vmware Server 1.0
NA
CVE-2008-2579
Unspecified vulnerability in the WebLogic Server Plugins for Apache, Sun and IIS web servers component in Oracle BEA Product Suite 10.0 MP1, 9.2 MP3, 9.1, 9.0, 8.1 SP6, 7.0 SP7, and 6.1 SP7 has unknown impact and remote attack vectors.
Oracle Weblogic Server 6.1
Oracle Weblogic Server 7.0
Oracle Weblogic Server 8.1
Oracle Weblogic Server 9.0
Oracle Weblogic Server 9.1
Oracle Weblogic Server 9.2
Oracle Weblogic Server 10.0
NA
CVE-2008-2027
Open redirect vulnerability in WebID/IISWebAgentIF.dll in RSA Authentication Agent 5.3.0.258 for Web for IIS, when accessed via certain browsers such as Mozilla Firefox, allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via an ftp...
Rsa Authentication Agent 5.3.0.258
NA
CVE-2008-1436
Microsoft Windows XP Professional SP2, Vista, and Server 2003 and 2008 does not properly assign activities to the (1) NetworkService and (2) LocalService accounts, which might allow context-dependent malicious users to gain privileges by using one service process to capture a res...
Microsoft Windows Server 2003
Microsoft Windows Vista -
Microsoft Windows-nt Vista
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Xp
1 EDB exploit
NA
CVE-2008-0074
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 up to and including 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot, NNTPFile\Root, or WWWRoot folders.
Microsoft Internet Information Services 5.0
Microsoft Internet Information Server 6.0
NA
CVE-2008-0075
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 up to and including 6.0 allows remote malicious users to execute arbitrary code via crafted inputs to ASP pages.
Microsoft Internet Information Server 6.0
NA
CVE-2007-6498
Multiple SQL injection vulnerabilities in Hosting Controller 6.1 Hot fix 3.3 and previous versions allow remote authenticated users to execute arbitrary SQL commands via the (1) email and (2) loginname parameters to Hosting/Addreseller.asp, (3) the sortfield parameter to accounts...
Hosting Controller Hosting Controller 6.1 Hotfix 3.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »