10

CVE-2001-0500

Exploit

EPSS 90.87%
Veröffentlicht 21.07.2001 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Index Server Version2.0

Microsoft ≫ Indexing Service Editionwindows_2000

Microsoft ≫ Internet Information Server Updatebeta Version <= 6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	90.87%	0.996

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

http://www.cert.org/advisories/CA-2001-13.html

Patch

Third Party Advisory

US Government Resource

Exploit

http://www.ciac.org/ciac/bulletins/l-098.shtml

http://www.iss.net/security_center/static/6705.php

http://www.securityfocus.com/archive/1/191873

http://www.securityfocus.com/bid/2880

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-033

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A197

https://nvd.nist.gov/vuln/detail/CVE-2001-0500

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-0500

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-0500

EUVD