1
|
9.8
10.0
|
CRITICAL
Network
Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7269
|
cpe:2.3:a:microsoft:internet_information_server:6.0:*
|
|
|
|
|
2023-11-7 11:50
2017-03-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2
|
-
4.3
|
MEDIUM
|
Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-1899
|
cpe:2.3:a:microsoft:internet_information_server:6.0:*
|
|
|
|
|
2021-02-6 00:37
2010-09-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
3
|
-
8.5
|
HIGH
|
Unspecified vulnerability in Microsoft IIS 6.0, 7.0, and 7.5, when Extended Protection for Authentication is enabled, allows remote authenticated users to execute arbitrary code via unknown vectors r…
|
CWE-94
Code Injection
|
CVE-2010-1256
|
cpe:2.3:a:microsoft:internet_information_server:6.0:*
|
|
|
|
|
2023-12-8 03:38
2010-06-9
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
4
|
-
2.6
|
LOW
|
Microsoft Internet Information Services (IIS) 6.0, when DNS resolution is enabled for client IP addresses, allows remote attackers to inject arbitrary text into log files via an HTTP request in conju…
|
CWE-79
Cross-site Scripting
|
CVE-2003-1582
|
cpe:2.3:a:microsoft:internet_information_server:6.0:*
|
|
|
|
|
2019-07-4 02:25
2010-02-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
5
|
-
9.0
|
HIGH
|
Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 6.0 allows remote authenticated users to execute arbitrary code via a crafted NLST (NAME LIST) command …
|
CWE-120
Classic Buffer Overflow
|
CVE-2009-3023
|
cpe:2.3:a:microsoft:internet_information_server:*:*
|
5.0
|
6.0
|
|
|
2023-11-7 11:04
2009-09-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
6
|
-
10.0
|
HIGH
|
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 through 6.0 allows remote attackers to execute arbitrary code via crafted inputs to ASP pages.
|
NVD-CWE-noinfo CWE-94
Code Injection
|
CVE-2008-0075
|
cpe:2.3:a:microsoft:internet_information_server:6.0:beta cpe:2.3:a:microsoft:internet_information_server:6.0:*
|
|
|
|
|
2020-11-24 04:49
2008-02-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
7
|
-
7.2
|
HIGH
|
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.0 through 7.0 allows local users to gain privileges via unknown vectors related to file change notifications in the TPRoot…
|
NVD-CWE-noinfo CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2008-0074
|
cpe:2.3:a:microsoft:internet_information_server:6.0:beta cpe:2.3:a:microsoft:internet_information_server:6.0:*
|
|
|
|
|
2021-02-6 00:37
2008-02-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
8
|
-
7.5
|
HIGH
|
Microsoft Internet Information Services (IIS) 6.0 allows remote attackers to cause a denial of service (server instability or device hang), and possibly obtain sensitive information (device communica…
|
NVD-CWE-Other
|
CVE-2007-2897
|
cpe:2.3:a:microsoft:internet_information_server:6.0:*
|
|
|
|
|
2017-07-29 10:31
2007-05-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
9
|
-
4.4
|
MEDIUM
|
Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, a…
|
NVD-CWE-Other
|
CVE-2006-6579
|
cpe:2.3:a:microsoft:internet_information_server:4.0:alpha cpe:2.3:a:microsoft:internet_information_server:4.0:* c…
|
|
5.0
|
|
|
2020-11-24 04:49
2006-12-16
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
10
|
-
6.5
|
MEDIUM
|
Buffer overflow in Microsoft Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows local and possibly remote attackers to execute arbitrary code via crafted Active Server Pages (ASP).
|
NVD-CWE-Other
|
CVE-2006-0026
|
cpe:2.3:a:microsoft:internet_information_server:6.0:*
|
|
|
|
|
2020-11-24 04:49
2006-07-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|