| ID |
CVE-2003-0226
|
| Summary |
Microsoft Internet Information Services (IIS) 5.0 and 5.1 allows remote attackers to cause a denial of service via a long WebDAV request with a (1) PROPFIND or (2) SEARCH method, which generates an error condition that is not properly handled. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 5.0 (as of 23-11-2020 - 19:49) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
NONE |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
| oval
via4
|
| accepted | 2007-08-02T14:47:16.660-04:00 | | class | vulnerability | | contributors | | name | Christine Walzer | | organization | The MITRE Corporation |
| name | Christine Walzer | | organization | The MITRE Corporation |
| name | Robert L. Hollis | | organization | ThreatGuard, Inc. |
| | description | Microsoft Internet Information Services (IIS) 5.0 and 5.1 allows remote attackers to cause a denial of service via a long WebDAV request with a (1) PROPFIND or (2) SEARCH method, which generates an error condition that is not properly handled. | | family | windows | | id | oval:org.mitre.oval:def:933 | | status | accepted | | submitted | 2004-05-17T12:00:00.000-04:00 | | title | IIS WebDAV Request Denial of Service | | version | 29 |
|
| refmap
via4
|
| bugtraq | - 20030528 Internet Information Services 5.0 Denial of service
- 20030529 IIS WEBDAV Denial of Service attacks
| | misc | http://www.spidynamics.com/iis_alert.html | | ntbugtraq | 20030528 Internet Information Services 5.0 Denial of service |
|
| Last major update |
23-11-2020 - 19:49 |
| Published |
09-06-2003 - 04:00 |
| Last modified |
23-11-2020 - 19:49 |
