CVE-2001-0507

EXPLOITED

Internet Information Services 5.0 - Privilege Escalation via Trojan Horse System File

Title source: llm

Exploitation Summary

CVE-2001-0507 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Digital Offense.

AI-analyzed exploit summary The provided content is a brief description of a vulnerability in Microsoft IIS 5.0 with a link to an external download (GitLab). No actual exploit code or technical details are included in the text.

Description

IIS 5.0 uses relative paths to find system files that will run in-process, which allows local users to gain privileges via a Trojan horse file, aka the "System file listing privilege elevation" vulnerability.

Exploits (1)

exploitdb SUSPICIOUS VERIFIED

by Digital Offense · textlocalwindows

https://www.exploit-db.com/exploits/21072

View Code ZIP pw:eip

The provided content is a brief description of a vulnerability in Microsoft IIS 5.0 with a link to an external download (GitLab). No actual exploit code or technical details are included in the text.

Classification

Suspicious 90%

Attack Type

Other

Complexity

Theoretical

Reliability

Theoretical

Target: Microsoft Internet Information Services 5.0

Auth required

Prerequisites: Write permissions on the target system

devstral-2 · analyzed Feb 18, 2026 Full analysis →