CVE-2002-2081 Information

Description

cphost.dll in Microsoft Site Server 3.0 allows remote attackers to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter which causes Site Server to abort and leaves the uploaded file in c:\temp.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0033.html http://www.iss.net/security_center/static/8053.php http://www.securityfocus.com/bid/4002