New Search

Windows 2000 IIS Directory Traversal Command Execution (Test 1)

oval:org.mitre.oval:def:78

Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2001-0333
Product(s):
  • Microsoft Internet Information Server (IIS)