Microsoft IIS ASP chunked encoding buffer overflow

2006-11-10T00:00:00
ID SAINT:41907C3E21F1F5BBF8918B1259ED8EBA
Type saint
Reporter SAINT Corporation
Modified 2006-11-10T00:00:00

Description

Added: 11/10/2006
CVE: CVE-2002-0079
BID: 4485
OSVDB: 768

Background

Microsoft IIS web servers include ISAPI extensions which are invoked in the server process to handle requests of a given type.

Problem

A buffer overflow in the ASP ISAPI filter allows remote attackers to execute arbitrary commands by sending chunked encoded form data in a POST request for an ASP page.

Resolution

Apply the patch referenced in Microsoft Security Bulletin 02-018.

References

<http://www.kb.cert.org/vuls/id/610291>
<http://archives.neohapsis.com/archives/bugtraq/2002-04/0116.html>

Limitations

Exploit works on IIS 5.0.

Platforms

Windows