Description

Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overrun."

Remediation

References

CVE-2003-0224

Related Vulnerabilities

PHP NULL Pointer Dereference Vulnerability (CVE-2016-7132)

Oracle Application Server CVE-2006-5359 Vulnerability (CVE-2006-5359)

WordPress Plugin WordPress Social Share, Social Login and Social Comments-Super Socializer Multiple Cross-Site Scripting Vulnerabilities (7.8.9)

Opencart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-4671)

WordPress Plugin Advanced Booking Calendar Cross-Site Scripting (1.6.7)

Severity

Critical

Classification

CVE-2003-0224

Tags

Missing Update Known Vulnerabilities