Описание
IIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executable file whose name is appended with operating system commands, aka the "Web Server File Request Parsing" vulnerability.
IIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executable file whose name is appended with operating system commands, aka the "Web Server File Request Parsing" vulnerability.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2000-0886
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-086
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5470
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A191
- http://www.securityfocus.com/bid/1912
- http://www.securityfocus.com/templates/archive.pike?mid=143604&list=1&fromthread=0&end=2000-11-11&threads=0&start=2000-11-05&
EPSS
Процентиль: 100%
0.89218
Высокий
CVE ID
Связанные уязвимости
nvd
около 25 лет назад
IIS 5.0 allows remote attackers to execute arbitrary commands via a malformed request for an executable file whose name is appended with operating system commands, aka the "Web Server File Request Parsing" vulnerability.
EPSS
Процентиль: 100%
0.89218
Высокий