Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2002-0364
Description:Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows attackers to execute arbitrary code via the processing of HTR request sessions, aka "Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise."
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2002-0364
BugTraq ID: 4855
http://www.securityfocus.com/bid/4855
Bugtraq: 20020612 ADVISORY: Windows 2000 and NT4 IIS .HTR Remote Buffer Overflow [AD20020612] (Google Search)
http://marc.info/?l=bugtraq&m=102392069305962&w=2
Bugtraq: 20020613 VNA - .HTR HEAP OVERFLOW (Google Search)
http://online.securityfocus.com/archive/1/276767
CERT/CC vulnerability note: VU#313819
http://www.kb.cert.org/vuls/id/313819
Microsoft Security Bulletin: MS02-028
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-028
http://marc.info/?l=ntbugtraq&m=102392308608100&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A182
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A29
http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0099.html
XForce ISS Database: iis-htr-chunked-encoding-bo(9327)
http://www.iss.net/security_center/static/9327.php




© 1998-2024 E-Soft Inc. All rights reserved.