Описание
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2002-0071
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-018
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A130
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A45
- http://marc.info/?l=bugtraq&m=101854087828265&w=2
- http://www.atstake.com/research/advisories/2002/a041002-1.txt
- http://www.cert.org/advisories/CA-2002-09.html
- http://www.cisco.com/warp/public/707/Microsoft-IIS-vulnerabilities-MS02-018.shtml
- http://www.iss.net/security_center/static/8799.php
- http://www.kb.cert.org/vuls/id/363715
- http://www.osvdb.org/3325
- http://www.securityfocus.com/bid/4474
EPSS
Процентиль: 99%
0.67642
Средний
CVE ID
Связанные уязвимости
nvd
почти 24 года назад
Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.
EPSS
Процентиль: 99%
0.67642
Средний