Vulnerabilities > Microsoft > Internet Information Server > 2.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-12-15 | CVE-2006-6579 | Unspecified vulnerability in Microsoft products Microsoft Windows XP has weak permissions (FILE_WRITE_DATA and FILE_READ_DATA for Everyone) for %WINDIR%\pchealth\ERRORREP\QHEADLES, which allows local users to write and read files in this folder, as demonstrated by an ASP shell that has write access by IWAM_machine and read access by IUSR_Machine. local microsoft | 4.4 |
2001-09-20 | CVE-2001-0709 | Unspecified vulnerability in Microsoft Internet Information Server Microsoft IIS 4.0 and before, when installed on a FAT partition, allows a remote attacker to obtain source code of ASP files via a URL encoded with Unicode. | 5.0 |
2001-06-27 | CVE-2001-0337 | Denial-Of-Service vulnerability in IIS Far East Edition The Microsoft MS01-014 and MS01-016 patches for IIS 5.0 and earlier introduce a memory leak which allows attackers to cause a denial of service via a series of requests. | 5.0 |
2001-06-27 | CVE-2001-0336 | Denial-Of-Service vulnerability in IIS Far East Edition The Microsoft MS00-060 patch for IIS 5.0 and earlier introduces an error which allows attackers to cause a denial of service via a malformed request. | 5.0 |
2001-06-27 | CVE-2001-0335 | Unspecified vulnerability in Microsoft Internet Information Server FTP service in IIS 5.0 and earlier allows remote attackers to enumerate Guest accounts in trusted domains by preceding the username with a special sequence of characters. | 5.0 |
2001-06-27 | CVE-2001-0334 | Incorrect Calculation of Buffer Size vulnerability in Microsoft Internet Information Server FTP service in IIS 5.0 and earlier allows remote attackers to cause a denial of service via a wildcard sequence that generates a long string when it is expanded. | 7.5 |
2001-06-27 | CVE-2001-0333 | Unspecified vulnerability in Microsoft Internet Information Server Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. | 7.5 |
1999-12-31 | CVE-1999-1148 | Unspecified vulnerability in Microsoft Internet Information Server FTP service in IIS 4.0 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via many passive (PASV) connections at the same time. | 5.0 |