cphost.dll in Microsoft Site Server 3.0 allows remote malicious users to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter, which causes Site Server to abort and leaves the uploaded file in c:\temp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft site server 3.0 |
||
microsoft site server commerce 3.0 |