New Search

Windows NT IIS Directory Traversal Command Execution (Test 2)

oval:org.mitre.oval:def:1018

Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows NT
Class:
vulnerability
Reference(s):
  • CVE-2001-0333
Product(s):
  • Microsoft Internet Information Server (IIS)