Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:10004
Category:CGI abuses
Title:IIS possible DoS using ExAir's search
Summary:NOSUMMARY
Description:Description:

IIS comes with the sample site 'ExAir'.
Unfortunately, one of its pages,
namely /iissamples/exair/search/search.asp,
may be used to make IIS hang, thus preventing
it from answering legitimate client requests.

Solution : Delete the 'ExAir' sample IIS site.

Risk factor : High

Cross-Ref: BugTraq ID: 193
Common Vulnerability Exposure (CVE) ID: CVE-1999-0449
http://www.securityfocus.com/bid/193
Bugtraq: 19990125 Re: [NTSEC] IIS 4 Advisory - ExAir sample site DoS (Google Search)
Bugtraq: 19990126 IIS 4 Advisory - ExAir sample site DoS (Google Search)
http://www.osvdb.org/2
http://www.osvdb.org/3
http://www.osvdb.org/4
XForce ISS Database: iis-exair-dos
CopyrightThis script is Copyright (C) 1999 Renaud Deraison

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.