CVE-2003-0226 Information

Description

Microsoft Internet Information Services (IIS) 5.0 and 5.1 allows remote attackers to cause a denial of service via a long WebDAV request with a (1) PROPFIND or (2) SEARCH method which generates an error condition that is not properly handled.

Reference

http://archives.neohapsis.com/archives/bugtraq/2003-05/0308.html http://marc.info/?l=bugtraq&m=105427362724860&w=2 http://marc.info/?l=ntbugtraq&m=105421243732552&w=2 http://www.spidynamics.com/iis_alert.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-018 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A933