IIS Vulnerabilities

Updated 6/13/02

CVE 1999-0874
CVE 2000-0778
CVE 2000-0884
CVE 2000-0886
CVE 2001-0241
CVE 2001-0333
CVE 2001-0500

Impact

An attacker could send a specially constructed request which crashes the server, executes arbitrary code with the privileges of the web server, or reveals the source code of ASP pages.

Note: The stoplight on this page indicates the highest severity level for this category of vulnerabilities. Please refer to the dot beside the link to this tutorial on the previous page to find out the true severity level.

Background

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

The Problem

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

Resolutions

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.

Where can I read more about this?

This section is only available with the purchase of SAINTwriter™, SAINTexpressSM, or WebSAINTSM.