Vulnerability in N/a
CVE-2002-0073
The FTP service in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows attackers who have established an FTP session to cause a denial of service via a specially crafted status request containing glob characters.
EPSS: 0.640 (98.5th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- iis-ftp-session-status-dos(8801) (vdb-entry, x_refsource_XF)
- 20020417 Microsoft FTP Service STAT Globbing DoS (mailing-list, x_refsource_BUGTRAQ)
- VU#412203 (x_refsource_CERT-VN, third-party-advisory)
- 20020416 [VulnWatch] Microsoft FTP Service STAT Globbing DoS (mailing-list, x_refsource_VULNWATCH)
- oval:org.mitre.oval:def:24 (signature, x_refsource_OVAL, vdb-entry)
- 3328 (x_refsource_OSVDB, vdb-entry)
- MS02-018 (x_refsource_MS, vendor-advisory)
- oval:org.mitre.oval:def:35 (signature, x_refsource_OVAL, vdb-entry)
- 4482 (vdb-entry, x_refsource_BID)
- CA-2002-09 (x_refsource_CERT, third-party-advisory)