Published: 21/07/2001 Updated: 12/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Subscribe to Internet Information Server

Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and previous versions allows remote malicious users to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet information server
microsoft index server 2.0
microsoft indexing service

# source: wwwsecurityfocuscom/bid/2880/info # # Windows Index Server ships with Windows NT 40 Option Pack; Windows Indexing Service ships with Windows 2000 An unchecked buffer resides in the 'idqdll' ISAPI extension associated with each service A maliciously crafted request could allow arbitrary code to run on the host in the Local ...

## # $Id: ms01_033_idqrb 9525 2010-06-15 07:18:08Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Met ...

/* source: wwwsecurityfocuscom/bid/2880/info Windows Index Server ships with Windows NT 40 Option Pack; Windows Indexing Service ships with Windows 2000 An unchecked buffer resides in the 'idqdll' ISAPI extension associated with each service A maliciously crafted request could allow arbitrary code to run on the host in the Local Syst ...

source: wwwsecurityfocuscom/bid/2880/info Windows Index Server ships with Windows NT 40 Option Pack; Windows Indexing Service ships with Windows 2000 An unchecked buffer resides in the 'idqdll' ISAPI extension associated with each service A maliciously crafted request could allow arbitrary code to run on the host in the Local System c ...

# source: wwwsecurityfocuscom/bid/2880/info # # Windows Index Server ships with Windows NT 40 Option Pack; Windows Indexing Service ships with Windows 2000 An unchecked buffer resides in the 'idqdll' ISAPI extension associated with each service A maliciously crafted request could allow arbitrary code to run on the host in the Local ...

netlas cli in go

Netlas go Search on netlasio for domain, vulns, hosts with same favicon etc Build/Install $ git clone githubcom/mmpx12/netlas-gogit $ cd netlas-go $ make $ sudo make install # or $ sudo make all You can also add completion with: $ sudo make completion Prebuild binaries can also

NVD-CWE-Other http://www.cert.org/advisories/CA-2001-13.html http://www.securityfocus.com/archive/1/191873 http://www.securityfocus.com/bid/2880 http://www.iss.net/security_center/static/6705.php http://www.ciac.org/ciac/bulletins/l-098.shtml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A197 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-033 https://nvd.nist.gov https://github.com/mmpx12/netlas-go https://www.exploit-db.com/exploits/20932/https://www.kb.cert.org/vuls/id/952336

CVE-2001-0500

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect