Executive Summary

Informations
Name CVE-2001-0336 First vendor Publication 2001-06-27
Vendor Cve Last vendor Modification 2018-10-12

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

The Microsoft MS00-060 patch for IIS 5.0 and earlier introduces an error which allows attackers to cause a denial of service via a malformed request.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0336

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 20
Application 6

ExploitDB Exploits

id Description
2000-05-14 Microsoft IIS 4.0/5.0 FTP Denial of Service Vulnerability
2011-01-08 Microsoft IIS/PWS CGI Filename Double Decode Command Execution

OpenVAS Exploits

Date Description
2005-11-03 Name : IIS Remote Command Execution
File : nvt/iis_decode_bug.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
5693 Microsoft MS00-060 Patch IIS Malformed Request DoS

Microsoft MS00-060 patch introduced a flaw in IIS that may allow a remote denial of service. The issue is triggered when a particular type of invalid request is received, and will result in loss of availability for the platform.

Snort® IPS/IDS

Date Description
2014-01-10 Microsoft NLST * dos attempt
RuleID : 8481 - Revision : 11 - Type : PROTOCOL-FTP

Nessus® Vulnerability Scanner

Date Description
2003-03-12 Name : The remote host is vulnerable to privilege escalation.
File : smb_nt_ms02-001.nasl - Type : ACT_GATHER_INFO
2001-05-15 Name : Arbitrary commands can be executed on the remote web server.
File : iis_decode_bug.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
MS https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01...
OSVDB http://www.osvdb.org/5693
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/6858

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
Date Informations
2021-05-04 12:01:20
  • Multiple Updates
2021-04-22 01:01:31
  • Multiple Updates
2020-11-24 12:01:10
  • Multiple Updates
2020-11-24 01:00:58
  • Multiple Updates
2020-05-23 01:35:30
  • Multiple Updates
2020-05-23 00:14:35
  • Multiple Updates
2018-10-13 00:22:23
  • Multiple Updates
2017-11-22 12:01:29
  • Multiple Updates
2017-10-10 09:23:20
  • Multiple Updates
2016-06-28 14:55:24
  • Multiple Updates
2016-04-26 11:51:33
  • Multiple Updates
2013-05-11 12:03:51
  • Multiple Updates