Lucene search
PRIOn knowledge basePRION:CVE-2007-2897HistoryMay 30, 2007 - 10:30 a.m.
Code injection
2007-05-3010:30:00
PRIOn knowledge base
www.prio-n.com
41
Microsoft Internet Information Services (IIS) 6.0 allows remote attackers to cause a denial of service (server instability or device hang), and possibly obtain sensitive information (device communication traffic); and might allow attackers with physical access to execute arbitrary code after connecting a data stream to a device COM port; via requests for a URI containing a ‘/’ immediately before and after the name of a DOS device, as demonstrated by the /AUX/.aspx URI, which bypasses a blacklist for DOS device requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| internet_information_server | eq | 6.0 |
Related
seebug
seebug
Microsoft IIS 6.0 DOS设备请求安全限制绕过漏洞
2012-02-01 00:00:00
nessus
nessus
Microsoft ASP.NET MS-DOS Device Name DoS (PCI-DSS check)
2013-02-13 00:00:00
Microsoft ASP.NET MS-DOS Device Name DoS
2013-02-13 00:00:00
cvelist
cvelist
CVE-2007-2897
2007-05-30 10:00:00
nvd
nvd
CVE-2007-2897
2007-05-30 10:30:00
cve
cve
CVE-2007-2897
2007-05-30 10:30:00