CVE-2003-0349 Information

Description

Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll) as installed in IIS 5.0 allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.

Reference

http://marc.info/?l=bugtraq&m=105665030925504&w=2 http://secunia.com/advisories/9115 http://securitytracker.com/id?1007059 http://www.kb.cert.org/vuls/id/113716 http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0306&L=NTBUGTRAQ&P=R4563 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-022 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A938