ID CVE-1999-0360
Summary MS Site Server 2.0 with IIS 4 can allow users to upload content, including ASP, to the target web site, thus allowing them to execute commands remotely.
References
Vulnerable Configurations
  • Microsoft Site Server 2.0
    cpe:2.3:a:microsoft:site_server:2.0
CVSS
Base: 7.2 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
description Microsoft Site Server 2.0 with IIS 4.0 Malicious File Upload Vulnerability. CVE-1999-0360. Remote exploit for windows platform
id EDB-ID:20305
last seen 2016-02-02
modified 1999-01-30
published 1999-01-30
reporter Mnemonix
source https://www.exploit-db.com/download/20305/
title Microsoft Site Server 2.0 with IIS 4.0 - File Upload Vulnerability
nessus via4
NASL family Web Servers
NASL id IIS_REPOST_ASP.NASL
description The script '/scripts/repost.asp' is installed on the remote IIS web server and allows an attacker to upload arbitrary files to the '/Users' directory if it has not been configured properly.
last seen 2019-02-21
modified 2018-07-13
plugin id 10372
published 2000-04-15
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=10372
title Microsoft IIS repost.asp File Upload
refmap via4
bugtraq 19990130 Security Advisory for Internet Information Server 4 with Site
ntbugtraq Jan29,1999
Last major update 17-10-2016 - 21:59
Published 30-01-1999 - 00:00
Back to Top