Vulnerability in N/a
CVE-2002-0072
The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server (IIS) 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote attackers to cause…
EPSS: 0.566 (98.9th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 4479 (vdb-entry, x_refsource_BID)
- VU#521059 (x_refsource_CERT-VN, third-party-advisory)
- iis-isapi-filter-error-dos(8800) (vdb-entry, x_refsource_XF)
- 20020411 KPMG-2002009: Microsoft IIS W3SVC Denial of Service (mailing-list, x_refsource_BUGTRAQ)
- MS02-018 (x_refsource_MS, vendor-advisory)
- 3326 (x_refsource_OSVDB, vdb-entry)
- CA-2002-09 (x_refsource_CERT, third-party-advisory)
- 20020415 Microsoft IIS Vulnerabilities in Cisco Products - MS02-018 (x_refsource_CISCO, vendor-advisory)