What is CVE-2001-0500?

CVE-2001-0500 is a vulnerability in N/a. Published 2002-03-09.

Is CVE-2001-0500 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2001-0500

Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Int…

EPSS: 0.902 (99.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

MS01-033 (x_refsource_MS, vendor-advisory)
20010618 All versions of Microsoft Internet Information Services, Remote buffer overflow (SYSTEM Level Access) (mailing-list, x_refsource_BUGTRAQ)
2880 (vdb-entry, x_refsource_BID)
L-098 (government-resource, third-party-advisory, x_refsource_CIAC)
iis-isapi-idq-bo(6705) (vdb-entry, x_refsource_XF)
oval:org.mitre.oval:def:197 (signature, x_refsource_OVAL, vdb-entry)
CA-2001-13 (x_refsource_CERT, third-party-advisory)

Frequently asked questions

What is CVE-2001-0500?: CVE-2001-0500 is a vulnerability in N/a. Published 2002-03-09.
Is CVE-2001-0500 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.