Published: 09/06/2003 Updated: 23/11/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 510

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Subscribe to Internet Information Services

Microsoft Internet Information Services (IIS) 5.0 and 5.1 allows remote malicious users to cause a denial of service via a long WebDAV request with a (1) PROPFIND or (2) SEARCH method, which generates an error condition that is not properly handled.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet information services 5.0

/* Microsoft IIS versions 50 and 51 remote denial of service exploit that makes use of the vulnerability recently published by SPI dynamics Published on 31052003 */ #include <windowsh> #include <winsockh> #include <stdioh> #pragma comment (lib,"ws2_32") void graphitte() {printf("\n********************************** ...

/* source: wwwsecurityfocuscom/bid/7735/info Microsoft Internet Information Services has been reported vulnerable to a denial of service When WebDAV receives excessively long requests to the 'PROPFIND' or 'SEARCH' variables, the IIS service will fail All current web, FTP, and email sessions will be terminated IIS will automatically r ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2003-05/0308.html http://www.spidynamics.com/iis_alert.html http://marc.info/?l=bugtraq&m=105427362724860&w=2 http://marc.info/?l=ntbugtraq&m=105421243732552&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A933 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-018 https://nvd.nist.gov https://www.exploit-db.com/exploits/35/

CVE-2003-0226

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect