| |||||||||||||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.801520 |
| Categoría: | Web Servers |
| Título: | Microsoft IIS ASP Stack Based Buffer Overflow Vulnerability |
| Resumen: | Check the stack based buffer overflow in IIS |
| Descripción: | Overview: The host is running Microsoft IIS Webserver and is prone to stack based buffer overflow vulnerability. Vulnerability Insight: The flaw is due to a stack overflow error in the in the IIS worker process which can be exploited using a crafted POST request to hosted 'ASP' pages. Impact: Successful exploitation will let the remote unauthenticated attackers to force the IIS server to become unresponsive until the IIS service is restarted manually by the administrator. Impact Level: Application Affected Software/OS: Microsoft Internet Information Services version 6.0 Fix: Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://www.microsoft.com/technet/security/bulletin/ms10-065.mspx References: http://bug.zerobox.org/show-2780-1.html http://www.exploit-db.com/exploits/15167/ http://www.deltadefensesystems.com/blog/?p=217 |
| Referencia Cruzada: |
BugTraq ID: 43138 Common Vulnerability Exposure (CVE) ID: CVE-2010-2730 Microsoft Security Bulletin: MS10-065 http://www.microsoft.com/technet/security/Bulletin/MS10-065.mspx http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6933 |
| Copyright | Copyright (c) 2010 Greenbone Networks GmbH |
| Esta es sólo una de 32582 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |
|
Auditorías de Seguridad | DNS Administrado | Monitoreo de Red | Analizador de Sitio | Informes de Investigación de Internet
Prueba de Web | Whois
© 1998-2013 E-Soft Inc. Todos los derechos reservados.