Vulnerability Details CVE-2008-0075
Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 through 6.0 allows remote attackers to execute arbitrary code via crafted inputs to ASP pages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.725
EPSS Ranking 98.7%
CVSS Severity
CVSS v2 Score 10.0
References
- http://marc.info/?l=bugtraq&m=120361015026386&w=2
- http://marc.info/?l=bugtraq&m=120361015026386&w=2
- http://secunia.com/advisories/28893
- http://www.securityfocus.com/bid/27676
- http://www.securitytracker.com/id?1019385
- http://www.us-cert.gov/cas/techalerts/TA08-043C.html
- http://www.vupen.com/english/advisories/2008/0508/references
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-006
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5308
- http://marc.info/?l=bugtraq&m=120361015026386&w=2
- http://marc.info/?l=bugtraq&m=120361015026386&w=2
- http://secunia.com/advisories/28893
- http://www.securityfocus.com/bid/27676
- http://www.securitytracker.com/id?1019385
- http://www.us-cert.gov/cas/techalerts/TA08-043C.html
- http://www.vupen.com/english/advisories/2008/0508/references
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-006
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5308
Products affected by CVE-2008-0075
-
cpe:2.3:a:microsoft:internet_information_server:6.0