CVE-2002-0364 Information
Share on:Description
Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows attackers to execute arbitrary code via the processing of HTR request sessions aka \Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise.\
Reference
http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0099.html http://marc.info/?l=bugtraq&m=102392069305962&w=2 http://marc.info/?l=ntbugtraq&m=102392308608100&w=2 http://online.securityfocus.com/archive/1/276767 http://www.iss.net/security_center/static/9327.php http://www.kb.cert.org/vuls/id/313819 http://www.securityfocus.com/bid/4855 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-028 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A182 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A29