File: 2091.txt

package info (click to toggle)
snort 2.7.0-20.4
  • links: PTS
  • area: main
  • in suites: lenny
  • size: 34,512 kB
  • ctags: 18,772
  • sloc: ansic: 115,404; sh: 10,893; makefile: 1,372; perl: 487; sql: 213
file content (78 lines) | stat: -rw-r--r-- 1,517 bytes parent folder | download | duplicates (6)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
Rule:

--
Sid:
2091

--
Summary:
server is attempted.

--
Impact:
Information disclosure.

--
Detailed Information:
A vulnerability exists in a component used by the Microsoft Internet 
Information Server 5.0 implementation of WebDAV. A specially crafted 
overly long URI when processed by the server, triggers a buffer overflow
in ntdll.dll which results in a system compromise of the targeted host.

The exploit only affects versions of IIS 5.0 running on Microsoft 
Windows 2000 prior to service pack 3. WebDAV is enabled by default on 
that platform.

vulnerabilities using the security scanner nessus.

--
Affected Systems:
Microsoft Internet Information Server 5.0 WebDAV on Windows 2000 prior 
to Service Pack 3.

--
Attack Scenarios:
The attacker is using nessus.

--
Ease of Attack:
Simple

--
False Positives:
None Known

--
False Negatives:
None Known

--
Corrective Action:
Apply the appropriate vendor supplied patch or service pack.

--
Contributors:
Sourcefire Research Team
Brian Caswell <bmc@sourcefire.com>
Nigel Houghton <nigel.houghton@sourcefire.com>

--
Additional References:

Nessus:
http://cgi.nessus.org/plugins/dump.php3?id=11412

CERT:
http://www.cert.org/advisories/CA-2003-09.html

CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0109

Bugtraq:
http://www.securityfocus.com/bid/7116

Microsoft Corporation:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms03-007.asp
http://www.microsoft.com/security/security_bulletins/ms03-007.asp

--