New Search

Windows NT IIS Heap Overrun in HTR Chunked Encoding

oval:org.mitre.oval:def:182

Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows attackers to execute arbitrary code via the processing of HTR request sessions aka "Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows NT
Class:
vulnerability
Reference(s):
  • CVE-2002-0364
Product(s):
  • Microsoft Internet Information Server (IIS)