|
|
CVE Reference: CVE-2005-4360 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-4360 |
|
|
Description: The URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional SP2 allows remote attackers to execute arbitrary code via multiple requests to ".dll" followed by arguments such as "~0" through "~9", which causes ntdll.dll to produce a return value that is not correctly handled by IIS, as demonstrated using "/_vti_bin/.dll/*/~0". NOTE: the consequence was originally believed to be only a denial of service (application crash and reboot). |
|
|
CVE Status: Candidate |
|
|
References: ST 1015376 SREASON http://securityreason.com/securityalert/271 SAID Secunia Advisory: SA18106 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1703 OSVDB 21805 MS http://www.microsoft.com/technet/security/Bulletin/ms07-041.mspx MISC http://ingehenriksen.blogspot.com/2005/12/microsoft-iis-remote-dos-dll-url.html HP http://archive.cert.uni-stuttgart.de/bugtraq/2007/07/msg00254.html CERT http://www.us-cert.gov/cas/techalerts/TA07-191A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/419707/100/0/threaded BID 15921 |
|
| Return to the previous page. |
