3 matches found
CVE-2003-0226
Microsoft Internet Information Services IIS 5.0 and 5.1 allows remote attackers to cause a denial of service via a long WebDAV request with a 1 PROPFIND or 2 SEARCH method, which generates an error condition that is not properly handled...
MS Windows IIS 5.0 - 5.1 Remote Denial of Service Exploit
漏洞描述: Microsoft IIS 5.0Internet Infomation Server 5是Microsoft Windows 2000自带的一个网络信息服务器,其中包含HTTP服务功能。IIS5 默认提供了对WebDAV的支持,通过WebDAV可以通过HTTP向用户提供远程文件存储的服务。 WebDAV实现对部分模式的超长请求处理不正确,远程攻击者可以利用这个漏洞对IIS服务进行拒绝服务攻击。 攻击者可以使用'PROPFIND'或'SEARCH'请求方法,提交包含49,153字节的Webdav请求,IIS会由于拒绝服务而重新启动。不过IIS...
CVE-2003-0226
CVE-2003-0226 : Microsoft IIS 5.0 and 5.1 are affected by a WebDAV-based denial-of-service when processing excessively long PROPFIND or SEARCH requests, leading to an error condition that IIS does not handle properly. The OpenVAS/NESSUS inputs reference MS03-018 (Cumulative Patch for IIS) as the ...