ID CVE-2003-0227
Summary The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft Windows NT 4.0 and 2000, nsiislog.dll, allows remote attackers to cause a denial of service in Internet Information Server (IIS) and execute arbitrary code via a certain network request.
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:internet_information_server:*:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:internet_information_server:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 12-10-2018 - 21:32)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
oval via4
  • accepted 2004-06-30T12:00:00.000-04:00
    class vulnerability
    contributors
    name Christine Walzer
    organization The MITRE Corporation
    description The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft Windows NT 4.0 and 2000, nsiislog.dll, allows remote attackers to cause a denial of service in Internet Information Server (IIS) and execute arbitrary code via a certain network request.
    family windows
    id oval:org.mitre.oval:def:936
    status accepted
    submitted 2004-05-18T12:00:00.000-04:00
    title Windows 2000 Media Services ISAPI Logging Vulnerability
    version 63
  • accepted 2004-06-30T12:00:00.000-04:00
    class vulnerability
    contributors
    name Christine Walzer
    organization The MITRE Corporation
    description The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft Windows NT 4.0 and 2000, nsiislog.dll, allows remote attackers to cause a denial of service in Internet Information Server (IIS) and execute arbitrary code via a certain network request.
    family windows
    id oval:org.mitre.oval:def:966
    status accepted
    submitted 2004-05-18T12:00:00.000-04:00
    title Windows NT Media Services ISAPI Logging Vulnerability
    version 63
refmap via4
bugtraq 20030528 RE: Alert: MS03-019, Microsoft... wrong, again.
ms MS03-019
ntbugtraq
  • 20030528 MS03-019: DoS or Code of Choice
  • 20030528 Re: Alert: MS03-019, Microsoft... wrong, again.
Last major update 12-10-2018 - 21:32
Published 09-06-2003 - 04:00
Back to Top