CVE-2000-0884 Information

Description

IIS 4.0 and 5.0 allows remote attackers to read documents outside of the web root and possibly execute arbitrary commands via malformed URLs that contain UNICODE encoded characters aka the \Web Server Folder Traversal\ vulnerability.

Reference

http://www.osvdb.org/436 http://www.securityfocus.com/bid/1806 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-078 https://exchange.xforce.ibmcloud.com/vulnerabilities/5377 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A44