Forum - Computer security: vulnerabilities and exploits database

[EN] securityvulns.ru
no-pyccku

Multiple bugs in Microsoft Internet Information Server
updated since 10.04.2002
Published: 10.04.2002
Source: MICROSOFT
SecurityVulns ID: 1923
Type: remote
Level: 8/10
Description: Multiple buffer overflows, crossite scripting, DoS.

Affected: MICROSOFT : Internet Information Server 4.0
MICROSOFT : Internet Information Server 5.0
MICROSOFT : Internet Information Server 5.1

Original document SNS, [SNS Advisory No.58] Microsoft IIS Local Cross-site Scripting Vulnerability (05.11.2002)

li0n, [A3SC] MS IIS out of process privilege elevation vulnerability(A3CR@K-Vul-2002-06-002) (04.11.2002)

NGSSoftware Insight Security Research, Microsoft Internet Information Server 5/5.1 Denial of Service (#NISR31102002) (31.10.2002)

document MICROSOFT, Microsoft Security Bulletin MS02-062: Cumulative Patch for Internet Information Service (Q327696) (31.10.2002)

CHINANSL, Windows 2000 Server IIS 5.0 .ASP Overflow Exploit (06.05.2002)

Peter Gründl, KPMG-2002015: Microsoft Distributed Transaction Coordinator DoS (20.04.2002)

document CISCO, Security Advisory: Microsoft IIS Vulnerabilities in Cisco Products - MS02-018 (17.04.2002)

H D Moore, Microsoft FTP Service STAT Globbing DoS (17.04.2002)

CERT, Advisory CA-2002-09 Multiple Vulnerabilities in Microsoft IIS (12.04.2002)

SNS, [SNS Advisory No.49] A Possibility of Internet Information Server/Services Cross Site Scripting (11.04.2002)

document Peter Gründl, KPMG-2002010: Microsoft IIS .htr ISAPI buffer overrun (11.04.2002)

Peter Gründl, KPMG-2002009: Microsoft IIS W3SVC Denial of Service (11.04.2002)

Dave Aitel, SPIKE version released that detects .HTR and ISAPI overflows (see spike.sourceforge.net) (11.04.2002)

document Thor Larholm, IIS allows universal CrossSiteScripting (11.04.2002)

X-FORCE, Multiple Remote Vulnerabilities in Microsoft IIS (11.04.2002)

zeno, Cgisecurity Advisory #9: Novell Websearch, and Microsoft IIS XSS Issues (11.04.2002)

EEYE, Windows 2000 and NT4 IIS .ASP Remote Buffer Overflow (10.04.2002)

document MICROSOFT, Security Bulletin MS02-018 : Cumulative Patch for Internet Information Services (Q319733) (10.04.2002)

Discuss: Read or add your comments to this news (0 comments)

Show		Threads
		Messages


Login:*		(Register)
Password:*
(private)	To:
(reply)	Subject:*
Text:

Main Forum (Eng) General security questions not appropriate for another forums.	3proxy Forum (Eng) All 3proxy question must be posted to this forum.	Bugs, Vulnerabilities, PoCs and Exploits (Eng) All vulnerability related questions, vulnerability digging and exploit creation.	Windows programming and administration (Eng) Administering Windows and application development.	Unix programming and administation (Eng) Administering Unix and application development.	Test forum Please post all test messages here. All test messages from different forums will be deteted.
Main Forum (Rus)	3proxy Forum (Rus)	Bugs, Vulnerabilities, PoCs and Exploits (Rus)	Windows programming and administration (Rus)	Unix programming and administation (Rus)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin