Description

Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overrun."

Remediation

References

CVE-2003-0224

Related Vulnerabilities

WordPress Plugin I Recommend This SQL Injection (3.7.2)

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker SQL Injection (9.0.1)

WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Cross-Site Scripting (3.5.2)

WordPress Plugin Easy Registration Forms Cross-Site Scripting (1.8.3)

Cherokee Improper Input Validation Vulnerability (CVE-2009-4489)

Severity

Critical

Classification

CVE-2003-0224

Tags

Missing Update Known Vulnerabilities