Vulnerabilities > Eeye Digital Security > Securells
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-08-14 | CVE-2001-0524 | Remote Security vulnerability in Securells eEye SecureIIS versions 1.0.3 and earlier does not perform length checking on individual HTTP headers, which allows a remote attacker to send arbitrary length strings to IIS, contrary to an advertised feature of SecureIIS versions 1.0.3 and earlier. | 7.5 |
| 2001-08-14 | CVE-2001-0523 | Unspecified vulnerability in Eeye Digital Security Secureiis and Securells eEye SecureIIS versions 1.0.3 and earlier allows a remote attacker to bypass filtering of requests made to SecureIIS by escaping HTML characters within the request, which could allow a remote attacker to use restricted variables and perform directory traversal attacks on vulnerable programs that would otherwise be protected. | 7.5 |