Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.
marc.info/?l=bugtraq&m=105665030925504&w=2
secunia.com/advisories/9115
securitytracker.com/id?1007059
www.kb.cert.org/vuls/id/113716
www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0306&L=NTBUGTRAQ&P=R4563
docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-022
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A938