Published: 22/04/2002 Updated: 20/11/2024

Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server (IIS) 4.0 and 5.0 Active Server Pages allows malicious users to cause a denial of service or execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet information server 4.0
microsoft internet information services 5.0

This advisory describes a vulnerability that affects Cisco products and applications that are installed on Microsoft operating systems incorporating the use of the Internet Information Server (IIS), and is based on the vulnerability of IIS, not due to a defect of the Cisco product or application A number of vulnerabilities were discove ...

source: wwwsecurityfocuscom/bid/4485/info A heap overflow condition in the 'chunked encoding transfer mechanism' related to Active Server Pages has been reported for Microsoft IIS (Internet Information Services) This condition affects IIS 40 and IIS 50 Exploitation of this vulnerability may result in a denial of service or allow fo ...

/* source: wwwsecurityfocuscom/bid/4485/info A heap overflow condition in the 'chunked encoding transfer mechanism' related to Active Server Pages has been reported for Microsoft IIS (Internet Information Services) This condition affects IIS 40 and IIS 50 Exploitation of this vulnerability may result in a denial of service or allow f ...

source: wwwsecurityfocuscom/bid/4485/info A heap overflow condition in the 'chunked encoding transfer mechanism' related to Active Server Pages has been reported for Microsoft IIS (Internet Information Services) This condition affects IIS 40 and IIS 50 Exploitation of this vulnerability may result in a denial of service or allow ...

source: wwwsecurityfocuscom/bid/4485/info A heap overflow condition in the 'chunked encoding transfer mechanism' related to Active Server Pages has been reported for Microsoft IIS (Internet Information Services) This condition affects IIS 40 and IIS 50 Exploitation of this vulnerability may result in a denial of service or allow for ...

NVD-CWE-Other https://nvd.nist.gov https://www.exploit-db.com/exploits/21369/http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20020415-ms02-018 https://www.kb.cert.org/vuls/id/610291 https://www.first.org/epss http://marc.info/?l=bugtraq&m=101846993304518&w=2 http://www.cert.org/advisories/CA-2002-09.html http://www.cisco.com/warp/public/707/Microsoft-IIS-vulnerabilities-MS02-018.shtml http://www.iss.net/security_center/static/8795.php http://www.kb.cert.org/vuls/id/610291 http://www.securityfocus.com/bid/4485 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-018 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A25 http://marc.info/?l=bugtraq&m=101846993304518&w=2 http://www.cert.org/advisories/CA-2002-09.html http://www.cisco.com/warp/public/707/Microsoft-IIS-vulnerabilities-MS02-018.shtml http://www.iss.net/security_center/static/8795.php http://www.kb.cert.org/vuls/id/610291 http://www.securityfocus.com/bid/4485 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-018 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A25

CVE-2002-0079

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect