Test Kennung:	1.3.6.1.4.1.25623.1.0.101016
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft IIS RCE Vulnerability (MS03-022) - Active Check
Zusammenfassung:	Microsoft IIS is prone to a remote code execution (RCE); vulnerability.
Beschreibung:	Summary: Microsoft IIS is prone to a remote code execution (RCE) vulnerability. Vulnerability Insight: There is a flaw in the way nsiislog.dll processes incoming client requests. A vulnerability exists because an attacker could send specially formed HTTP request (communications) to the server that could cause IIS to fail or execute code on the user's system. Solution: Microsoft has released a patch to correct these issues. Please see the references for more information. Note: This patch can be installed on systems running Microsoft Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 and Microsoft Windows 2000 Service Pack 4. This patch has been superseded by the one provided in Microsoft Security Bulletin MS03-019. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0349 Bugtraq: 20030626 Windows Media Services Remote Command Execution #2 (Google Search) http://marc.info/?l=bugtraq&m=105665030925504&w=2 CERT/CC vulnerability note: VU#113716 http://www.kb.cert.org/vuls/id/113716 Microsoft Security Bulletin: MS03-022 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-022 http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0306&L=NTBUGTRAQ&P=R4563 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A938 http://securitytracker.com/id?1007059 http://secunia.com/advisories/9115
Copyright	Copyright (C) 2009 Christian Eric Edjenguele

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.