ID CVE-2001-0241
Summary Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print request that is passed to the extension through IIS 5.0.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 30-04-2019 - 14:27)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
oval via4
accepted 2011-05-16T04:00:15.997-04:00
class vulnerability
contributors
  • name Christine Walzer
    organization The MITRE Corporation
  • name Ingrid Skoog
    organization The MITRE Corporation
  • name Shane Shaffer
    organization G2, Inc.
  • name Sudhir Gandhe
    organization Telos
  • name Shane Shaffer
    organization G2, Inc.
description Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long print request that is passed to the extension through IIS 5.0.
family windows
id oval:org.mitre.oval:def:1068
status accepted
submitted 2004-05-12T12:00:00.000-04:00
title Windows 2000 Internet Printing ISAPI Extension Buffer Overflow
version 70
refmap via4
bid 2674
bugtraq 20010501 Windows 2000 IIS 5.0 Remote buffer overflow vulnerability (Remote SYSTEM Level Access)
cert CA-2001-10
ms MS01-023
osvdb 3323
xf iis-isapi-printer-bo(6485)
saint via4
bid 2674
description Microsoft IIS 5.0 printer ISAPI extension buffer overflow
id web_server_iis_iis,web_server_iis_iisx
osvdb 3323
title iis_printer_isapi
type remote
Last major update 30-04-2019 - 14:27
Published 27-06-2001 - 04:00
Back to Top