ID de Prueba:	1.3.6.1.4.1.25623.1.0.10685
Categoría:	Gain root remotely
Título:	IIS ISAPI Overflow
Resumen:	NOSUMMARY
Descripción:	Description: There's a buffer overflow in the remote web server through the ISAPI filter. It is possible to overflow the remote web server and execute commands as user SYSTEM. Solution: See http://www.microsoft.com/technet/security/bulletin/ms01-044.mspx Risk factor : High
Referencia Cruzada:	BugTraq ID: 2690 BugTraq ID: 2880 BugTraq ID: 3190 BugTraq ID: 3193 BugTraq ID: 3194 BugTraq ID: 3195 Common Vulnerability Exposure (CVE) ID: CVE-2001-0544 http://www.securityfocus.com/bid/3195 Computer Incident Advisory Center Bulletin: L-132 http://www.ciac.org/ciac/bulletins/l-132.shtml Microsoft Security Bulletin: MS01-044 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-044 XForce ISS Database: iis-invalid-mime-header-dos(6983) https://exchange.xforce.ibmcloud.com/vulnerabilities/6983 Common Vulnerability Exposure (CVE) ID: CVE-2001-0545 http://www.osvdb.org/5736 XForce ISS Database: iis-url-redirection-dos(6981) https://exchange.xforce.ibmcloud.com/vulnerabilities/6981 Common Vulnerability Exposure (CVE) ID: CVE-2001-0506 http://www.securityfocus.com/bid/3190 Bugtraq: 20010817 NSFOCUS SA2001-06 : Microsoft IIS ssinc.dll Buffer Overflow Vulnerability (Google Search) http://marc.info/?l=bugtraq&m=99802093532233&w=2 Bugtraq: 20011127 IIS Server Side Include Buffer overflow exploit code (Google Search) http://online.securityfocus.com/archive/1/242541 XForce ISS Database: iis-ssi-directive-bo(6984) https://exchange.xforce.ibmcloud.com/vulnerabilities/6984 Common Vulnerability Exposure (CVE) ID: CVE-2001-0507 Bugtraq: 20010816 ENTERCEPT SECURITY ALERT: Privilege Escalation Vulnerability in Microsoft IIS (Google Search) http://online.securityfocus.com/archive/1/205069 http://www.osvdb.org/5607 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A909 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A912 XForce ISS Database: iis-relative-path-privilege-elevation(6985) https://exchange.xforce.ibmcloud.com/vulnerabilities/6985 Common Vulnerability Exposure (CVE) ID: CVE-2001-0508 http://www.securityfocus.com/bid/2690 Bugtraq: 20010506 IIS 5.0 PROPFIND DOS #2 (Google Search) http://online.securityfocus.com/archive/1/182579 http://www.osvdb.org/5606 http://www.osvdb.org/5633 http://www.iss.net/security_center/static/6982.php Common Vulnerability Exposure (CVE) ID: CVE-2001-0500 http://www.securityfocus.com/bid/2880 Bugtraq: 20010618 All versions of Microsoft Internet Information Services, Remote buffer overflow (SYSTEM Level Access) (Google Search) http://www.securityfocus.com/archive/1/191873 http://www.cert.org/advisories/CA-2001-13.html Computer Incident Advisory Center Bulletin: L-098 http://www.ciac.org/ciac/bulletins/l-098.shtml Microsoft Security Bulletin: MS01-033 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-033 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A197 http://www.iss.net/security_center/static/6705.php
Copyright	This script is Copyright (C) 2001 Renaud Deraison

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.