CVE-2001-0544 - IIS 5.0 allows local users to cause a denial of service (hang) via by installing content that produc

CVE-2001-0544

Summary

IIS 5.0 allows local users to cause a denial of service (hang) via by installing content that produces a certain invalid MIME Content-Type header, which corrupts the File Type table.

References

http://www.ciac.org/ciac/bulletins/l-132.shtml
http://www.securityfocus.com/bid/3195
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-044
https://exchange.xforce.ibmcloud.com/vulnerabilities/6983

Vulnerable Configurations

cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 30-10-2018 - 16:25)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	3195
ciac	L-132
xf	iis-invalid-mime-header-dos(6983)

Last major update

30-10-2018 - 16:25

Published

30-10-2001 - 05:00

Last modified

30-10-2018 - 16:25