Vulnerability Database

Published: Nov 20, 2001
Updated: Nov 9, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2001-0902" target="_blank" rel="noopener"> CVE-2001-0902
Severity: High
Exploit:

300,445

Total vulnerabilities in the database

Microsoft IIS 5.0 allows remote attackers to spoof web log entries via an HTTP request that includes hex-encoded newline or form-feed characters.

CVSS v2:

No CWE or OWASP classifications available.

Software	From	Fixed in
microsoft / internet_information_services	5.0	5.0.x

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.