Description

Buffer overflow in ASP Server-Side Include Function in IIS 4.0, 5.0 and 5.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via long file names.

Remediation

References

CVE-2002-0149

Related Vulnerabilities

Nginx Improper Certificate Validation Vulnerability (CVE-2009-3555)

ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-1850)

MediaWiki Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-35624)

IBM WebSEAL CVE-2019-4145 Vulnerability (CVE-2019-4145)

WordPress Plugin Feed Them Social-for Twitter feed, Youtube and more Cross-Site Request Forgery (2.8.6)

Severity

High

Classification

CVE-2002-0149

Tags

Missing Update Known Vulnerabilities