Description
Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overrun."
Remediation
References
Related Vulnerabilities
WordPress Plugin Social Rocket-Social Sharing Cross-Site Request Forgery (1.2.9)
WordPress Plugin Search Exclude Security Bypass (1.2.2)
Jboss EAP Improper Restriction of XML External Entity Reference Vulnerability (CVE-2017-12629)
WordPress Plugin WP-Stats-Dashboard Multiple Cross-Site Scripting Vulnerabilities (2.6.5.1)