Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "" characters twice.
| Software | From | Fixed in |
|---|---|---|
| microsoft / internet_information_server | - | 5.0.x |
| microsoft / internet_information_server | 4.0 | 4.0.x |