CVE-2002-1973

2002-12-31T05:00:00
ID CVE-2002-1973
Type cve
Reporter cve@mitre.org
Modified 2018-08-13T21:47:00

Description

Buffer overflow in CHttpServer::OnParseError in the ISAPI extension (Isapi.cpp) when built using Microsoft Foundation Class (MFC) static libraries in Visual C++ 5.0, and 6.0 before SP3, as used in multiple products including BadBlue, allows remote attackers to cause a denial of service (access violation and crash) and possibly execute arbitrary code via a long query string that causes a parsing error.