CVE-2001-0333

Published: Sep 18, 2001

Modified: Aug 8, 2024

PUBLISHED

Description

Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

MS01-026

vendor-advisory

x_refsource_MS

oval:org.mitre.oval:def:1051

vdb-entry

signature

x_refsource_OVAL

CA-2001-12

third-party-advisory

x_refsource_CERT

iis-url-decoding(6534)

vdb-entry

x_refsource_XF

oval:org.mitre.oval:def:37

vdb-entry

signature

x_refsource_OVAL

oval:org.mitre.oval:def:78

vdb-entry

signature

x_refsource_OVAL

2708

vdb-entry

x_refsource_BID

20010515 NSFOCUS SA2001-02 : Microsoft IIS CGI Filename Decode Error Vulnerability

mailing-list

x_refsource_BUGTRAQ

oval:org.mitre.oval:def:1018

vdb-entry

signature

x_refsource_OVAL

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2001-0333

Description

Affected Products

References