CVE-2002-0364 Information

Share on:

Feb 14, 2021 cve

Description

Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows attackers to execute arbitrary code via the processing of HTR request sessions aka \Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise.\

Reference

http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0099.html http://marc.info/?l=bugtraq&m=102392069305962&w=2 http://marc.info/?l=ntbugtraq&m=102392308608100&w=2 http://online.securityfocus.com/archive/1/276767 http://www.iss.net/security_center/static/9327.php http://www.kb.cert.org/vuls/id/313819 http://www.securityfocus.com/bid/4855 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-028 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A182 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A29