Double Encoding Directory Traversal Vulnerability in IIS 5.0 and Earlier

Double Encoding Directory Traversal Vulnerability in IIS 5.0 and Earlier

CVE-2001-0333 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.

Learn more about our Cis Benchmark Audit For Microsoft Iis.