CVSS: 5.0EPSS: 2%CPEs: 9EXPL: 0CVE-2002-0057
https://notcve.org/view.php?id=CVE-2002-0057
XMLHTTP control in Microsoft XML Core Services 2.6 and later does not properly handle IE Security Zone settings, which allows remote attackers to read arbitrary files by specifying a local file as an XML Data Source. El control XMLHTTP en Microsoft XML Core Services 2.6 y versiones posteriores no manejan adecuadamente el establecimiento de valores de la Zona de Seguridad del IE, lo cual permite a atacantes remotos la lectura arbitraria de ficheros especificando un fichero local como una fuente de datos XML. • http://archives.neohapsis.com/archives/bugtraq/2001-12/0152.html http://marc.info/?l=bugtraq&m=101366383408821&w=2 http://www.osvdb.org/3032 http://www.securityfocus.com/bid/3699 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-008 https://exchange.xforce.ibmcloud.com/vulnerabilities/7712 •
CVSS: 5.0EPSS: 8%CPEs: 1EXPL: 3CVE-2001-1186 – Microsoft IIS 5.0 - False Content-Length Field Denial of Service
https://notcve.org/view.php?id=CVE-2001-1186
Microsoft IIS 5.0 allows remote attackers to cause a denial of service via an HTTP request with a content-length value that is larger than the size of the request, which prevents IIS from timing out the connection. • https://www.exploit-db.com/exploits/21177 http://online.securityfocus.com/archive/1/244931 http://online.securityfocus.com/archive/1/245100 http://www.iss.net/security_center/static/7691.php http://www.securityfocus.com/archive/1/244892 http://www.securityfocus.com/bid/3667 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2001-0902
https://notcve.org/view.php?id=CVE-2001-0902
Microsoft IIS 5.0 allows remote attackers to spoof web log entries via an HTTP request that includes hex-encoded newline or form-feed characters. • http://marc.info/?l=bugtraq&m=100626531103946&w=2 http://marc.info/?l=ntbugtraq&m=100627497122247&w=2 http://www.securityfocus.com/bid/6795 https://exchange.xforce.ibmcloud.com/vulnerabilities/7613 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2001-0544
https://notcve.org/view.php?id=CVE-2001-0544
IIS 5.0 allows local users to cause a denial of service (hang) via by installing content that produces a certain invalid MIME Content-Type header, which corrupts the File Type table. • http://www.ciac.org/ciac/bulletins/l-132.shtml http://www.securityfocus.com/bid/3195 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-044 https://exchange.xforce.ibmcloud.com/vulnerabilities/6983 •
CVSS: 5.0EPSS: 27%CPEs: 1EXPL: 0CVE-2001-0505
https://notcve.org/view.php?id=CVE-2001-0505
Multiple memory leaks in Microsoft Services for Unix 2.0 allow remote attackers to cause a denial of service (memory exhaustion) via a large number of malformed requests to (1) the Telnet service, or (2) the NFS service. • http://www.kb.cert.org/vuls/id/581603 http://www.kb.cert.org/vuls/id/994851 http://www.securityfocus.com/bid/3089 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-039 https://exchange.xforce.ibmcloud.com/vulnerabilities/6882 https://exchange.xforce.ibmcloud.com/vulnerabilities/6883 •