CVSS: 5.0EPSS: 3%CPEs: 2EXPL: 0CVE-2003-0702
https://notcve.org/view.php?id=CVE-2003-0702
Unknown vulnerability in an ISAPI plugin for ISS Server Sensor 7.0 XPU 20.16, 20.18, and possibly other versions before 20.19, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code in Internet Information Server (IIS) via a certain URL through SSL. • http://marc.info/?l=bugtraq&m=106278164225389&w=2 http://www.enteredge.com/research/CAN-2003-0702.asp https://exchange.xforce.ibmcloud.com/vulnerabilities/13088 •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2002-0480
https://notcve.org/view.php?id=CVE-2002-0480
ISS RealSecure for Nokia devices before IPSO build 6.0.2001.141d is configured to allow a user "skank" on a machine "starscream" to become a key manager when the "first time connection" feature is enabled and before any legitimate administrators have connected, which could allow remote attackers to gain access to the device during installation. • http://marc.info/?l=bugtraq&m=101666833321138&w=2 http://marc.info/?l=bugtraq&m=101675086010051&w=2 http://marc.info/?l=bugtraq&m=101684141308876&w=2 http://www.securityfocus.com/bid/4331 •
CVSS: 7.5EPSS: 9%CPEs: 7EXPL: 0CVE-2002-0237
https://notcve.org/view.php?id=CVE-2002-0237
Buffer overflow in ISS BlackICE Defender 2.9 and earlier, BlackICE Agent 3.0 and 3.1, and RealSecure Server Sensor 6.0.1 and 6.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a flood of large ICMP ping packets. Desbordamiento de búfer en ISS BlackICE Defender 2.9 y anteriores, BlackICE Agente 3.0 y 3.1, y RealSecure Server Sensor 6.01 y 6.5 permiten a atacantes remotos que provoquen una denegación de servicio (caida) y posiblemente ejecutar código arbitrario por medio de un envío masivo de grandes paquetes ping ICMP. • http://marc.info/?l=bugtraq&m=101286393404301&w=2 http://marc.info/?l=bugtraq&m=101302424803268&w=2 http://marc.info/?l=bugtraq&m=101321744807452&w=2 http://marc.info/?l=ntbugtraq&m=101353165915171&w=2 http://www.iss.net/security_center/alerts/advise109.php http://www.iss.net/security_center/static/8058.php http://www.securityfocus.com/bid/4025 •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1280
https://notcve.org/view.php?id=CVE-2002-1280
Memory leak in RealSecure Event Collector 6.5 allows attackers to cause a denial of service (memory consumption and crash). • http://www.isskk.co.jp/support/XPressUpdates/RS/RS65ECSR15RNj.html •
CVSS: 7.5EPSS: 7%CPEs: 8EXPL: 1CVE-2001-0669 – Cisco Secure IDS 2.0/3.0 / Snort 1.x / ISS RealSecure 5/6 / NFR 5.0 - Encoded IIS Detection Evasion
https://notcve.org/view.php?id=CVE-2001-0669
Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL. • https://www.exploit-db.com/exploits/21100 http://marc.info/?l=bugtraq&m=99972950200602&w=2 http://www.cisco.com/warp/public/707/cisco-intrusion-detection-obfuscation-vuln-pub.shtml http://www.kb.cert.org/vuls/id/548515 http://www.securityfocus.com/bid/3292 http://xforce.iss.net/alerts/advise95.php •