Description

Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows attackers to execute arbitrary code via the processing of HTR request sessions, aka "Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise."

Remediation

References

CVE-2002-0364

Related Vulnerabilities

WordPress Plugin WordPress Social Ring (Facebook Like, Google +1, ReTweet, LinkedIn and Pin It) Cross-Site Scripting (1.1.9)

YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-4116)

Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-0995)

OpenSSL Incomplete Cleanup Vulnerability (CVE-2022-1473)

WebLogic CVE-2020-14883 Vulnerability (CVE-2020-14883)

Severity

High

Classification

CVE-2002-0364

Tags

Missing Update Known Vulnerabilities