10
CVE-2001-0500
- EPSS 96.73%
- Veröffentlicht 21.07.2001 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:54:25
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Index Server Version2.0
Microsoft ≫ Indexing Service Editionwindows_2000
Microsoft ≫ Internet Information Server Updatebeta Version <= 6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 96.73% | 0.999 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://www.cert.org/advisories/CA-2001-13.html
http://www.ciac.org/ciac/bulletins/l-098.shtml
http://www.iss.net/security_center/static/6705.php
http://www.securityfocus.com/archive/1/191873
http://www.securityfocus.com/bid/2880
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-033
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A197