CVE-2001-0500

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
21/07/2001
Last modified:
03/04/2025

Description

Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida, as commonly exploited by Code Red.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:microsoft:index_server:2.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:indexing_service:*:*:windows_2000:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_server:*:beta:*:*:*:*:*:* 6.0 (including)