10

CVE-2001-0500

Exploit

EPSS 90.87%
Published 21.07.2001 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Index Server Version2.0

Microsoft ≫ Indexing Service Editionwindows_2000

Microsoft ≫ Internet Information Server Updatebeta Version <= 6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	90.87%	0.996

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://www.cert.org/advisories/CA-2001-13.html

Patch

Third Party Advisory

US Government Resource

Exploit

http://www.ciac.org/ciac/bulletins/l-098.shtml

http://www.iss.net/security_center/static/6705.php

http://www.securityfocus.com/archive/1/191873

http://www.securityfocus.com/bid/2880

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-033

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A197

https://nvd.nist.gov/vuln/detail/CVE-2001-0500

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0500

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0500

EUVD