Published: 22/04/2002 Updated: 23/11/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Subscribe to Internet Information Server

The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server (IIS) 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote malicious users to cause a denial of service (crash) when the URL parser accesses a null pointer.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet information server 4.0
microsoft internet information services 5.0

This advisory describes a vulnerability that affects Cisco products and applications that are installed on Microsoft operating systems incorporating the use of the Internet Information Server (IIS), and is based on the vulnerability of IIS, not due to a defect of the Cisco product or application A number of vulnerabilities were discove ...

NVD-CWE-Other http://www.cisco.com/warp/public/707/Microsoft-IIS-vulnerabilities-MS02-018.shtml http://www.cert.org/advisories/CA-2002-09.html http://www.kb.cert.org/vuls/id/521059 http://www.iss.net/security_center/static/8800.php http://www.securityfocus.com/bid/4479 http://www.osvdb.org/3326 http://marc.info/?l=bugtraq&m=101853851025208&w=2 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-018 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20020415-ms02-018 https://www.kb.cert.org/vuls/id/521059

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-0072

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect