ID CVE-2002-1182
Summary IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (crash) via malformed WebDAV requests that cause a large amount of memory to be assigned.
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:internet_information_server:5.1:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:internet_information_server:5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 30-10-2018 - 16:25)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
oval via4
  • accepted 2007-08-02T14:47:14.777-04:00
    class vulnerability
    contributors
    • name Christine Walzer
      organization The MITRE Corporation
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    description IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (crash) via malformed WebDAV requests that cause a large amount of memory to be assigned.
    family windows
    id oval:org.mitre.oval:def:1009
    status accepted
    submitted 2004-05-19T12:00:00.000-04:00
    title Windows XP IIS5 WebDAV Denial of Service
    version 28
  • accepted 2005-02-16T12:00:00.000-04:00
    class vulnerability
    contributors
    • name Christine Walzer
      organization The MITRE Corporation
    • name Christine Walzer
      organization The MITRE Corporation
    description IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (crash) via malformed WebDAV requests that cause a large amount of memory to be assigned.
    family windows
    id oval:org.mitre.oval:def:1011
    status accepted
    submitted 2004-05-12T12:00:00.000-04:00
    title Windows 2000 IIS5 WebDAV Denial of Service
    version 65
refmap via4
bid
  • 4846
  • 6068
  • 6070
ciac N-011
misc
vulnwatch 20021031 Microsoft Internet Information Server 5/5.1 Denial of Service (#NISR31102002)
xf
  • iis-resource-utilization-dos(10184)
  • iis-webdav-memory-allocation-dos(10503)
Last major update 30-10-2018 - 16:25
Published 12-11-2002 - 05:00
Last modified 30-10-2018 - 16:25
Back to Top