FrontPage fp30reg.dll remote debug buffer overflow

2006-01-30T00:00:00
ID SAINT:681FEAA8DCD7E0E3F05DC0A3E13C77BF
Type saint
Reporter SAINT Corporation
Modified 2006-01-30T00:00:00

Description

Added: 01/30/2006
CVE: CVE-2003-0822
BID: 9007
OSVDB: 2952

Background

Microsoft FrontPage Server Extensions includes a remote debugging function.

Problem

A buffer overflow in **fp30reg.dll** leads to a vulnerability in the remote debug function in FrontPage Server Extensions. A remote attacker could execute arbitrary commands using a specially crafted chunked encoded request.

Resolution

Apply the patch referenced in Microsoft Security Bulletin 03-051.

References

<http://www.kb.cert.org/vuls/id/279156>

Platforms

Windows